26 Sep
2014
26 Sep
'14
2:30 a.m.
On 26/09/2014 5:22 AM, Douglas Ray wrote:
those of you who haven't been up into the small hours looking at the
... if you were looking at this then, then you were already probably far too late on this. This looks like something that must be fixed ASAP. In relation to Debian, it's been patched for Wheezy or Squeeze-LTS -- big problem if you are still on Squeeze. This looks like a very serious issue that very quickly become exploited. I would hate to think about all those boxes running busybox and how they might or might not be effected, but definitely a case of making sure that such equipment is NOT Internet accessible by any process ... lock down access to internal IP addresses, better still limit specific IP address(es). Cheers A.