Brandon Whaley redkrieg at gmail.com
Wed Sep 24 22:17:55 UTC 2014

The scope of the issue isn't limited to SSH, that's just a popular
example people are using.  Any program calling bash could potentially
be vulnerable.

On Wed, Sep 24, 2014 at 6:11 PM, Jim Popovitch <jimpop at gmail.com> wrote:
>> debian/ubuntu admins may want to apt-get update/upgrade or whatever
> debian/ubuntu aren't really all that immediately impacted.
> $ grep "bash$" /etc/passwd | wc -l
> 2
>  ^^ both of those are user accounts, not system/daemon accounts.
> -Jim P.

More information about the NANOG mailing list