[Cialug] Shellshock Bash Remote Code Execution Vulnerability
kristau
kristau at gmail.com
Fri Sep 26 22:45:18 CDT 2014
Thanks! So the short answer, after reading that, is "SELINUX will not
completely stop it but will limit its access (and stop escalation attempts)
compared to a non-SELINUX configuration."
On Fri, Sep 26, 2014 at 9:08 PM, Jeffrey Ollie <jeff at ocjtech.us> wrote:
> On Fri, Sep 26, 2014 at 8:35 PM, kristau <kristau at gmail.com> wrote:
>
> > Maybe I'm missing something here, but wouldn't properly configured
> SELINUX
> > policies prevent an apache/httpd owned cgi from executing /bin/bash?
> >
> >
> Answered in painstaking detail:
>
> http://danwalsh.livejournal.com/71122.html
>
> --
> Jeff Ollie
> _______________________________________________
> Cialug mailing list
> Cialug at cialug.org
> http://cialug.org/mailman/listinfo/cialug
>
--
Tired programmer
Coding late into the night
The core dump follows
More information about the Cialug
mailing list