Tag Archive: Debian

A remotely exploitable vulnerability in bash has been discovered by Stephane Chazelas. The vulnerability has the CVE identifier CVE-2014-6271 and has been given the name Shellshock by some. This affects Debian as well as other Linux distributions. The vulnerability arises from the fact that you can create environment variables with specially-crafted values before calling the Bash shell. These variables can contain code, which gets executed as soon as the shell is invoked. The name of these crafted variables does not matter, only their contents. As a result, this vulnerability is exposed in many contexts.

This issue affects all software that uses the Bash shell and parses values of environment variables. This issue is especially dangerous as there are many possible ways Bash can be called by an application. Quite often if an application executes another binary, Bash is invoked to accomplish this. Because of the pervasive use of the Bash shell, this issue is quite serious and should be treated as such.

However, there is nothing to worry about as a patch has been issued. It is recommended to install it using your system software manager.

Bash Patch

You can verify the upgrade by running the following command. You should receive “Not vulnerable”.

$env check=’Not vulnerable’ x='() { :;}; check=Vulnerable’ bash -c ‘echo $check

Read more : https://securityblog.redhat.com/2014/09/24/bash-specially-crafted-environment-variables-code-injection-attack/

Install Cisco Packet Tracer under Linux

Cisco Packet Tracer can be a very useful tool for learning about networking without needing to spend tons of money(infact, none). The simulator allows you to create a networking topology & then carry on your configurations & changes before they can be implemented in the real world networking environment. This is critical as you get to learn from any mistakes in simulation thus not needing your network to act as a guinea pig. Here, I’ll show you how you can install the Cisco Packet Tracer under your linux system. I would be installing it on Fedora 18.

Cisco Packet Tracer Linux

Continue reading

Installing software under Linux doesn’t require one to hit the console anymore. Thanks to the graphical package managers available which have made the job of installing, uninstalling & updating software packages a child’s play. Still knowing how to manage software via console is necessary to make yourself a competent Linux user. In this first post I will cover installing software under Debian Linux. I will follow this post with installing softwares on Redhat, installing from source etc.
Continue reading

%d bloggers like this: