Shell Shock Bash Bug – Fixed on eBoundHost Servers

A major security flaw was discovered in Bash.  The Shell Shock vulnerability allows attackers to issue arbitrary commands via crafted environment variables.

There is a simple test that will show you if you’re vulnerable. Just run the following command within your shell:

env X=”() { :;} ; echo UPDATENOW” /bin/sh -c “echo test”

If you see the word “UPDATENOW” echoed back then your Bash version is vulnerable and you have to update.

All eBoundHost managed servers were patched just moments after the vulnerability was announced.  If you already have an account on our managed servers you don’t need to do anything.  If you have an unmanaged server with eBoundHost, please contact us and we can help you at no cost.  This vulnerability also affects other devices and not only web servers.  If you’re using Linux at home or in the office, you need to update Bash to the latest available stable version just to make sure that you’re not at risk.

Tom P September 26, 2014