We have over 10000 servers to patch for bash vulnerability (shellshock) bug. Now my question is what is the command to patch this bug ? And how we can check whether the patch has been installed and the bug has been fixed ?
Asked
Active
Viewed 182 times
-1
-
1According to Redhat they've updated bash to deal with this. So install the updates. – goldilocks Nov 13 '14 at 15:45
-
@goldilocks: i need the proper command to patch this bug and after patching how we can know that the patch has been installed and bug has been fixed ? – Srv Nov 13 '14 at 15:52
1 Answers
1
You need first to upgrade bash with up2date bash command on each servers, then execute this script to test if all is OK. But if the upgrade is a success, I'm not sure testing is needed. doc up2date
Gilles Quénot
- 33,867
-
whether 'rpm -Uvh (new_bash_rpm_package name)' command will patch the vulnerable bash file ? – Srv Nov 13 '14 at 16:08
-
-
+1. Because it should have at least 1! Your answer is completely correct whether it's a duplicate or not. You're also right that he/she shouldn't feel the need to have to test. Unless they're doing some strange experiment it's not really necessary. Of course terminating all the running bash processes would possibly be required (depending on if it was a shared library or not that was updated) but that should be all that's necessary. – Pryftan Jan 28 '18 at 02:39