update

Brandon Whaley redkrieg at gmail.com
Wed Sep 24 22:17:55 UTC 2014


The scope of the issue isn't limited to SSH, that's just a popular
example people are using.  Any program calling bash could potentially
be vulnerable.

On Wed, Sep 24, 2014 at 6:11 PM, Jim Popovitch <jimpop at gmail.com> wrote:
>> debian/ubuntu admins may want to apt-get update/upgrade or whatever
>
> debian/ubuntu aren't really all that immediately impacted.
>
> $ grep "bash$" /etc/passwd | wc -l
> 2
>
>  ^^ both of those are user accounts, not system/daemon accounts.
>
> -Jim P.


More information about the NANOG mailing list