There are more vulnerabilities than just Apache/http, the most important thing is to make sure Bash is patched. If you are using one of the...
Worth mentioning, The latest Debian updates to Wheezy (and probably many other versions/distros) pass all the current shellshock vulnerability...
Why not? If dash* is invoked by some web facing service then it won't interpret the env variable in the first place so it'll never open a bash...
Who knows whether any piece of software has security holes? We currently know that bash DOES have issues so I'm implementing an additional...
Let's hope you're right but in the meantime I'm going to be pessimistic:...
How did you guess ;-) As long as all my basic services (Nginx, MySQL, email etc) keep working as they are I can live without the rest for now, at...
Hi all, first post here. I would like to know what would break, in ISPConfig 3, if I changed the default shell (the /bin/sh symlink) from bash to...
Separate names with a comma.
