EP029a

EP029a – Addendum for the Shellshocked

Music provided by: Denis Kreynin https://soundcloud.com/denis-kreynin

First we describe what bash is. Check the good wikipedia entry at https://en.m.wikipedia.org/wiki/Bash_(Unix_shell)
Next we go into details on the actual bash vulnerability known as shellshock. A very good summary on the bash vulnerability and what it affects: https://www.troyhunt.com/2014/09/everything-you-need-to-know-about.html
Continued news as it developed at the time of the recording from the excellent Krebs on Security website
A battery of tests you can run against your system to see if you’re vulnerable to shellshock and other resources: https://shellshocker.net
If you’re part of a large organization then chances are you have intrusion detection systems, or maybe even intrusion prevention tools. Here’s a link to the community snort rules for detecting the exploitation of bash: https://blog.snort.org/2014/09/snort-community-ruleset-out-of-band.html (link stolen from the security onion blog)

Additional References:
‘Programming’ guide to bash: https://tille.garrels.be/training/bash/
Where the bash vulnerability was first disclosed publicly: https://seclists.org/oss-sec/2014/q3/649
US Cert National vulerability database with tons of references to products affected: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-6271

Leave a Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.