Shell shock bash bug - are our routers vulnerable?
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Plusnet Community
- :
- Forum
- :
- Help with my Plusnet services
- :
- Broadband
- :
- Re: Shell shock bash bug - are our routers vulnera...
Shell shock bash bug - are our routers vulnerable?
25-09-2014 10:06 AM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Re: Shell shock bash bug - are our routers vulnerable?
25-09-2014 10:20 AM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Re: Shell shock bash bug - are our routers vulnerable?
25-09-2014 1:03 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Re: Shell shock bash bug - are our routers vulnerable?
25-09-2014 2:21 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Bob Pullen
Plusnet Product Team
If I've been helpful then please give thanks ⤵
Re: Shell shock bash bug - are our routers vulnerable?
25-09-2014 2:33 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Re: Shell shock bash bug - are our routers vulnerable?
25-09-2014 2:36 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
In another browser tab, login into the Plusnet user portal BEFORE clicking the fault & ticket links
Superusers are not staff, but they do have a direct line of communication into the business in order to raise issues, concerns and feedback from the community.
If this post helped, please click the Thumbs Up and if it fixed your issue, please click the This fixed my problem green button below.
Re: Shell shock bash bug - are our routers vulnerable?
25-09-2014 2:52 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Re: Shell shock bash bug - are our routers vulnerable?
25-09-2014 3:05 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
In another browser tab, login into the Plusnet user portal BEFORE clicking the fault & ticket links
Superusers are not staff, but they do have a direct line of communication into the business in order to raise issues, concerns and feedback from the community.
If this post helped, please click the Thumbs Up and if it fixed your issue, please click the This fixed my problem green button below.
Re: Shell shock bash bug - are our routers vulnerable?
25-09-2014 3:21 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Re: Shell shock bash bug - are our routers vulnerable?
27-09-2014 12:20 AM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Couldn't find any. Looked through support pages. Service status announcements. Twitter feeds. Community blog tags (announcements, incident reports, industry news). And finally searched the forums. Found a thread which was locked with a comment from the forum moderator "locked as its already covered here..." http://community.plus.net/forum/index.php/topic,132240.0.html
... which brought me to this thread. With single official reply "No, they're not." Is that it? Or have I missed something more detailed in my search?
Despite being glad my plusnet router is not vulnerable, given the global news coverage of this extraordinary vulnerability I am shocked that this is not offered a fuller explanation and given more prominence in an easier to find location. Surely Plusnet customers deserve to know that they are safe from this vulnerability.
There. That's my rant over.
PS. I'm happy really. Just find it incredible I had to really route around (pun intended) to get the answer.
Re: Shell shock bash bug - are our routers vulnerable?
27-09-2014 2:49 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
In fact it doesn't really even have a shell as such just a limited one.
Re: Shell shock bash bug - are our routers vulnerable?
27-09-2014 3:29 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Re: Shell shock bash bug - are our routers vulnerable?
27-09-2014 5:31 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Actually, I think 10 out of 10 is a bit extreme. To exploit this flaw a hacker would need the website programmer to pass input direct to a shell, and that's just bad programming. No one should ever use input for anything without checking it matches the expected pattern for input, and I would never want to pass input to a shell because the shell is so powerful it would be madness to do that. Also, if the input is passed to the shell, I'm not sure what this bug actually adds. The shell is designed to process commands passed to it, so why would we need this convoluted way of doing it? If I have access to bash, I can simply write commands without going through this process. If I haven't, I can't use it.
So I'm really unclear as to where the new danger is here. This just looks like a curious bug to me. Nothing I have read shows how it could actually be used to gain access a person hasn't already got.
Re: Shell shock bash bug - are our routers vulnerable?
28-09-2014 11:51 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Quote from: kjpetrie So I'm really unclear as to where the new danger is here. This just looks like a curious bug to me. Nothing I have read shows how it could actually be used to gain access a person hasn't already got.
I'm certainly no techie in this field... but I've seen other forums link to http://en.wikipedia.org/wiki/Shellshock_(software_bug)
Does it help? It seems to be kept up-to-date with developments. (The usual wikipedia caveat applies)
Re: Shell shock bash bug - are our routers vulnerable?
29-09-2014 12:09 AM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Here it is corrected
http://en.wikipedia.org/wiki/Shellshock_(software_bug)
dick:quote
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Plusnet Community
- :
- Forum
- :
- Help with my Plusnet services
- :
- Broadband
- :
- Re: Shell shock bash bug - are our routers vulnera...