Also have a look at the quite long thread on the MAN-LUG list:
https://listserv.manchester.ac.uk/cgi-bin/wa?A1=ind1409&L=MAN-LUG#6
Best wishes to all, Ted.
On 25-Sep-2014 17:20:33 Paul Lenton wrote:
You can test if your version of bash is affected by running the command
env x='() { :;}; echo vulnerable' bash -c "echo this is a test"
If you get the output
vulnerable this is a test
Then you need to update. (If you don't have a vulnerable version then you'll get some error about x not being iniatialised.) Ubuntu LTS, Fedora and Debian (along with RHEL/CentOS) have already prepared fixes. Failing that, you can grab the source online and manually replace bash.
There may be other distros that have fixes but those are the ones I know of. Also, as the BBC article says, hackers are lazy. They have a known exploit that they'll try against big targets (servers, mostly) so if you're just running a computer at home, I'd reckon you're fairly low on the list of targets :-)
Cheers
On 25 September 2014 18:11:48 GMT+01:00, Chris Walker alug_cdw@the-walker-household.co.uk wrote:
On Thu, 25 Sep 2014 17:42:52 +0100 Bev Nicolson lumos@gmx.co.uk wrote:
What should we do? Here it's just me and my computer to worry about for example and I have a firewall and a virus checker installed. Is that enough?
My machine had an update this morning to bash and a couple of other things.
-- Sent from my Android device with K-9 Mail. Please excuse my brevity.
main@lists.alug.org.uk http://www.alug.org.uk/ http://lists.alug.org.uk/mailman/listinfo/main Unsubscribe? See message headers or the web site above!
------------------------------------------------- E-Mail: (Ted Harding) Ted.Harding@wlandres.net Date: 25-Sep-2014 Time: 20:24:12 This message was sent by XFMail -------------------------------------------------