<p dir="ltr"><br>
On Sep 26, 2014 11:03 AM, "Matt Emmott" <<a href="mailto:memmott@gmail.com">memmott@gmail.com</a>> wrote:<br>
><br>
><br>
><br>
> On Fri, Sep 26, 2014 at 10:38 AM, Raymond Wagner <<a href="mailto:raymond@wagnerrp.com">raymond@wagnerrp.com</a>> wrote:<br>
>><br>
>> On 9/25/2014 11:13 PM, Another Sillyname wrote:<br>
>>><br>
>>> I don't know if people have read about the Shellshock vulnerability recently discovered.<br>
>>><br>
>>> Anyone with an Internet exposed mythtv server would be well advised to do research on it ASAP.<br>
>><br>
>><br>
>> If your backend is exposed to the internet, an attacker doesn't need to use Bash to run anything they want on your system.<br>
>> _______________________________________________<br>
><br>
><br>
> What about MythWeb? <br>
><br>
> _______________________________________________<br>
> mythtv-users mailing list<br>
> <a href="mailto:mythtv-users@mythtv.org">mythtv-users@mythtv.org</a><br>
> <a href="http://www.mythtv.org/mailman/listinfo/mythtv-users">http://www.mythtv.org/mailman/listinfo/mythtv-users</a><br>
> <a href="http://wiki.mythtv.org/Mailing_List_etiquette">http://wiki.mythtv.org/Mailing_List_etiquette</a><br>
> MythTV Forums: <a href="https://forum.mythtv.org">https://forum.mythtv.org</a><br>
></p>
<p dir="ltr">Raymond, are you saying, just for my own clarification, that a firewall negates the shell shock threat?<br>
</p>