Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
fiedzia
on Sept 25, 2014
|
parent
|
context
|
favorite
| on:
Everything you need to know about the Shellshock B...
wget --header='Referer: () { :;}; touch /tmp/vulnerable ' www.example.com
bodyfour
on Sept 25, 2014
|
next
[–]
Note that you'll typically want to supply the URL to a CGI script on the site, not just www.example.com. Don't think you're unaffected just because the top-level page of your site doesn't appear vulnerable.
earlz
on Sept 25, 2014
|
prev
[–]
Is there some easy way of detecting a site you don't control is vulnerable without bringing it down?
nkurz
on Sept 25, 2014
|
parent
[–]
Yes, you can ask it to ping an address you control and record where the pings come from.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
