ShellShock Bug: What is it and how to fix it

Shellshock or the Bash bug has hit the news as the latest bug affecting web servers the world over. What is it, how could it affect you and what can you do about it?

The Shellshock or Bash bug affects all Unix and Unix style operating systems, for example most flavours of Linux and Mac OS X.

Bash is a core module of Unix style operating systems and allows scripts (little mini programs) to be executed (run) on servers and systems.

The Shellshock bug allows hackers to embed code into requests for webpages and this code may be able to open up other services on the server to allow wider access for further malicious activity. The ramifications of this are extremely widespread because a very high percentage of web servers world wide run Linux operating systems.

Whilst there isn’t a full fix (at the time of writing) there is a temporary fix and the good news is that it’s really straight forward for web host managers and technicians to check their servers to see if they are vulnerable. The following article published by Digital Ocean describes all the technical details about the bug and how to check a server and apply the available fixes.

https://www.digitalocean.com/community/tutorials/how-to-protect-your-server-against-the-shellshock-bash-vulnerability

If you are at all concerned to know if the web server where your web site is hosted is vulnerable or not then forward the link above to the person who looks after your website for you.

To add piece of mind to any of our clients – we’ve checked all Juju Digital’s hosting platforms and non of our servers are vulnerable.

I haven’t got one but Jim does

Imagine for a moment that you’re shopping in the high street and you walk into a store looking for a particular widget but you can’t find it on the shelves, so you ask an assistant for help. Consider these two possible responses: Response one The assistant scratches his head a little and looks a bit… Continue Reading

Dev Tip: loading JavaScript from JavaScript

A little dev tip for any of our Front End developer friends The problem Recently I was developing an interactive site for a client and it was intended to be a single page solution more like an app than a site, in that when a user clicked on a menu item the new content would… Continue Reading

Under the hood: Domain names explained

We all know about web addresses right? But what do we know about domain names? This is the first in a series of under the hood articles for those who’d like a more in depth knowledge and understanding of how the Internet works on a more technical level. This article seeks to demystify the world… Continue Reading

Choosing the right web professional for your project

In such a vast industry as Internet marketing and web development it’s not surprising that the quality and credibility of practitioners ranges from charlatans to the saints. The industry has no regulations nor governing body and very little legislation – on one hand this can be a good thing because it embodies the free spirit… Continue Reading