Perfsonar and shellshock

• Previous message (by thread): Perfsonar and shellshock
• Next message (by thread): YouTube CDN down?
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> On Sep 29, 2014, at 8:55 AM, Stephen Satchell <list at satchell.net> wrote:
> 
> On 09/29/2014 05:23 AM, Leif Nixon wrote:
>> Please guys,
>> 
>> If everybody could patch their perfsonar boxen against shellshock LIKE
>> RIGHT NOW, or preferably LAST WEEK, or alternatively put the machines
>> out of their misery with a shotgun, that would be great.
>> 
>> Thank you,
>> 
> 
>> From the perfSonar site:
> 
> "perfSONAR is recommending that all users run yum update to download the
> latest packages from the CentOS repositories"
> 
> This will need to be done again in a couple of weeks, when a "better"
> patch becomes available from the FSF or wherever.
> 
> By the way, the history of the development of bash is mildly
> interesting.  http://www.wired.com/2014/09/shellshocked-bash/

Proper operation of a host requires automated updating (yum-updatesd, yum-cron) to pick up these packages.

Those who are paranoid or afraid of damage from automatic updates should exclude packages that require specific
versions.

- Jared

• Previous message (by thread): Perfsonar and shellshock
• Next message (by thread): YouTube CDN down?
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]