Thursday, September 25, 2014

The expert on Bashbuggen – “Many servers open” – Computer Sweden

bug in the popular command prompt Bourne Again Shell, Bash, Linux , Unix, and OS X, can be difficult to control. It believes security analyst Leif Nixon.

Read more New vulnerability affects both Linux and Mac .

– Bash is as a fundamental component and can appear in many places in a system. The system administrator needs to find all the holes but an attacker need only find one, he says.

Right now he to scan a list of the largest servers to see how many people are open to attack by the bug.

– I’ve already found quite a few open servers.

Unlike in the case of Heart Bleed bug in spring, it is the new-found bug in Bash old and came into the system already in the 90s. That means, according to Leif Nixon that there are many old system where the bug can lie and cheat. In a first stage, it is mostly web servers that are vulnerable to attacks.

– There is already finished tools and descriptions to download to exploit the attack, said Leif Nixon.

Simply put, make the bug it possible for an attacker to execute arbitrary commands via the program Bash on an affected machine. For most major Linux variants are already updates.

– But from Apple, we still have not heard anything, says Leif Nixon.

An additional problem is that Linux is built into many connected devices and systems where it may be harder to update. Leif Nixon hope that the problem will be less there because they often have a different command interpreter than just Bash.

LikeTweet

No comments:

Post a Comment