oss-sec mailing list archives
Of Shellshock and logfiles
From: Dave Horsfall <dave () horsfall org>
Date: Fri, 10 Oct 2014 07:51:11 +1100 (EST)
I don't *think* I've seen this mentioned here (and apologies if so), but somebody posited on another list that Shellshock attempts in one's Apache logs are not directed against PHP or its scripts, but rather against those Bash scripts that analyse the Apache logs in turn... I've heard of similar things in mail logs, which *could* be the result of attempting to target either Procmail or logfile analysers. Then again, maybe the spammers really are that desperate that they'll try anything that they think might work. -- Dave
Current thread:
- Of Shellshock and logfiles Dave Horsfall (Oct 09)
- Re: Of Shellshock and logfiles Kurt Seifried (Oct 09)