Re: Bug in Bash shell creates big security hole on anything with *nix in it

To: Klaus Knopper <debian-knoppix@knopper.net>
Cc: debian-knoppix@lists.debian.org
Subject: Re: Bug in Bash shell creates big security hole on anything with *nix in it
From: Gilles van Ruymbeke <gvr_knoppix_mailing_list_no_spam_123@ruymbeke.com>
Date: Fri, 26 Sep 2014 19:24:47 -0700
Message-id: <[🔎] 20140927022453.5E1C388315@mx1.olden.ch>
In-reply-to: <[🔎] 20140925015523.GF714@knopper.net>
References: <[🔎] 20140922173029.3F22E88631@mx1.olden.ch> <[🔎] 20140923201133.GB714@knopper.net> <[🔎] 20140923210108.B18BB8844C@mx1.olden.ch> <[🔎] 20140925014257.DC8C588315@mx1.olden.ch> <[🔎] 20140925015523.GF714@knopper.net>

Hi Klaus,
Please find below a link to my modified init scipt:
cf: http : / / s94002264.onlinehome.us/grub/k740/init740.zip (use save as)
They key thing is to replace the cifs mount lines as below.

/static/mount.cifs "${NFSDIR}" /mnt-system -r -n -oguest,noserverino,nounix > /dev/null 2>&1 && MOUNTED="yes"mount -t cifs "${NFSDIR}" /mnt-system -r -n -ouser=guest,noserverino,nounix > /dev/null 2>&1 && MOUNTED="yes"You may also consider adding some of the extra binaries necessary forthe pxe/cifs boot as an alternate minirt on the dvd.cf: http : / / s94002264.onlinehome.us/grub/k741/minirt_741.gz (usesave as) minirt_741.tgz is also available to check the content.Regarding the e1000e network interface, the e1000 (without the ending"e") works fine. Only the e1000e have a problem.This is really weird and I have no clue what is the root cause ofthis problem with that specific e1000e einterface.Easy to chek it out with vmware using one of the following parametersin the vmx file:

ethernet0.virtualDev = "vmxnet3" ==> ok
ethernet0.virtualDev = "e1000"    ==> ok
ethernet0.virtualDev = "e1000e"  ==> fail
Best Regards,
Gilles

PS: Could you please ackowledge good reception of this email as itseems that sometimes my email get rejected.


At 06:55 PM 9/24/2014, Klaus Knopper wrote:

Hello Gilles,

On Wed, Sep 24, 2014 at 06:42:52PM -0700, Gilles van Ruymbeke wrote:
> Hi Klaus,
> You may also want to update the GNU Bourne Again Shell (Bash) to fix
> a new vulnerability, cf the link below:

> http : / /arstechnica.com/security/2014/09/bug-in-bash-shell-creates-big-security-hole-on-anything-with-nix-in-it/


Since this is a local, not remote security problem, I don't worry much
about it (you can get root more easily by just typing "sudo"), but the
security issues with apts signature verification are of more concern. If
making a new release, I would like to fix as many bugs as possible, of
course. Do you have new information about the e1000e issue?

Regards
-Klaus


--
To UNSUBSCRIBE, email to debian-knoppix-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Archive: [🔎] 20140925015523.GF714@knopper.net">https://lists.debian.org/[🔎] 20140925015523.GF714@knopper.net

Reply to:

Follow-Ups:
- Re: Bug in Bash shell creates big security hole on anything with *nix in it
  - From: Klaus Knopper <debian-knoppix@knopper.net>

References:
- Intel e1000e network card missing in Knoppix 7.4.1 Linux kernel
  - From: Gilles van Ruymbeke <gvr_knoppix_mailing_list_no_spam_123@ruymbeke.com>
- Re: Intel e1000e network card missing in Knoppix 7.4.1 Linux kernel
  - From: Klaus Knopper <debian-knoppix@knopper.net>
- Re: Intel e1000e network card missing in Knoppix 7.4.1 Linux kernel
  - From: Gilles van Ruymbeke <gvr_knoppix_mailing_list_no_spam_123@ruymbeke.com>
- Bug in Bash shell creates big security hole on anything with *nix in it
  - From: Gilles van Ruymbeke <gvr_knoppix_mailing_list_no_spam_123@ruymbeke.com>
- Re: Bug in Bash shell creates big security hole on anything with *nix in it
  - From: Klaus Knopper <debian-knoppix@knopper.net>

Prev by Date: Standby issues on 7.4.1
Next by Date: Re: Video card problem
Previous by thread: Re: Bug in Bash shell creates big security hole on anything with *nix in it
Next by thread: Re: Bug in Bash shell creates big security hole on anything with *nix in it
Index(es):
- Date
- Thread