- Joined
- Apr 5, 2012
- Messages
- 115
- Motherboard
- GA-Z77P-D3
- CPU
- i5 3570K
- Graphics
- ATI Radeon 6850
- Mac
- Classic Mac
- Mobile Phone
It has been reported today (Sept. 26) that a bash / shellshock vulnerability is present in every form of linux/unix system including OSX. For those not in the know, Bash is a ubiquitous bit of software; a command interpreter, or "shell," that provides a basic text-on-a-green-screen interface to POSIX/UNIX and Unix-like systems. Bash is present on every Linux distribution, almost every UNIX system, many Android phones, thousands upon thousands of embedded OS versions on hardware devices -- and on every version of Mac OSX ever shipped.
According to TUAW:
"If your Mac shipped with Mountain Lion or Mavericks (i.e. you bought it in the last two years), it's highly unlikely your Apache web server is turned on. It also probably got turned off if you upgraded to a current OS X edition, so if you didn't take steps to reactivate it, your potential attack surface for Shellshock is smaller than it would be otherwise. (Not sure if your Mac's web server is on or off? Try visiting http://localhost/ in your browser. No page available = off, anything else such as "It works!" = on."
Read more here.
The questions is: Are hackintosh units even more vulnerable to this bash/shellshock bug?
According to TUAW:
"If your Mac shipped with Mountain Lion or Mavericks (i.e. you bought it in the last two years), it's highly unlikely your Apache web server is turned on. It also probably got turned off if you upgraded to a current OS X edition, so if you didn't take steps to reactivate it, your potential attack surface for Shellshock is smaller than it would be otherwise. (Not sure if your Mac's web server is on or off? Try visiting http://localhost/ in your browser. No page available = off, anything else such as "It works!" = on."
Read more here.
The questions is: Are hackintosh units even more vulnerable to this bash/shellshock bug?