Shellshock Exploit – Manually patching BASH

Recently the events concerning the Shellshock exploit have been all over the media. This one is bad.. real bad:

Remote exploit vulnerability in bash CVE-2014-6271

However it’s entirely possible that your Linux distribution might not have a patch readily available if say, you’re running an older linux distro like Ubuntu 8.0.4

Fear not.. building and installing your own patched version of bash is fairly straightforward, presuming you have GCC and build tools installed with your distribution. If you’re comfortable building code you can do the following:

#assume that your sources are in /src
cd /src
#download all patches
for i in $(seq -f "%03g" 0 25); do wget$i; done
tar zxvf bash-4.3.tar.gz
cd bash-4.3
#apply all patches
for i in $(seq -f "%03g" 0 25);do patch -p0 < ../bash43-$i; done
#build and install after retrieving and patching the bash build files
sudo ./configure --prefix=/usr --bindir=/bin --sbindir=/sbin --sysconfdir=/etc && sudo make && sudo make

Here’s a link to the original discussion on this over on Hacker News

Mac OS X Leopard vs Vista

Chris Pirillo’s website has a great breakdown of Leopard vs Vista where he shows overall why Leopard is a better OS than vista.

Mac OS X Leopard vs Microsoft Windows Vista

While the article IS interesting what really caught me off guard was this comment from one of his readers:

Don Mitchell – September 1, 2007 @ 11:01 am

Apple is great at design, but not especially good at operating system kernels. They gave up on their in-house OS and fell back on UNIX, an operating system that is woefully obsolete today.

This is, without doubt, one of the most idiotic statements I have ever read, bar none. All companies today use Unix in one form or another – HP/UX, Linux, Solaris – the list goes on. Unix is the operating system of business. Windows tried with their monolithic NT-based kernel and are losing ground every day.

But Mr. Mitchell continues his rampant idiocy:

The perfect PC would have an Apple UI and shell, with the Windows NT kernel and DirectX for advanced 3D graphics and games. NTÂ’s kernel is still considerably more advanced than any version of UNIX, with kernel threads, fibers, events, completion ports, asynchronous I/O, multiple heaps, and a collection of concurrency control features. Some of these features have been kludged into UNIX in recent years, but it was never designed to do these things.

The PC should also be an open hardware platform like the Windows PC is, but the Mac is not. I should be able to select from different competing hardware vendors, or pull out my nVidia graphics card and install an ATI card if I so desire.

This guy has obviously drank the Microsoft Kool-aid for FAR too long. His only concern above is “advanced 3D graphics and games”. Mr. Mitchell, go back to ITT Tech and demand your money back NOW. The education you got there was not worth the paper your worthless diploma was printed on.

Linux FileSystem Comparisons…

[Originally Posted 12-May-2004]

If you use Linux you’ll find this interesting. If you use Linux and don’t understand what a file system is, please re-format your computer and install Windows XP – you might be better off..

Link: Linux FileSystem Benchmarks

The summary is that ReiserFS is the overall best File system over all of what I consider the “popular” File System formats (such as ext2 and ext3).