Would the /bin/sh shell in OpenBSD, which is a "reimplementation of bash" be affected by either of these exploits? So happy to learn no action is needed on my part for my OpenBSD sever :)
Sent from my iPhone > On Sep 25, 2014, at 9:10 AM, sven falempin <[email protected]> wrote: > > On Thu, Sep 25, 2014 at 8:11 AM, Christian Weisgerber > <[email protected]> wrote: >> On 2014-09-25, Craig R. Skinner <[email protected]> wrote: >> >>> All the highly skilled work invested in the project, keeping ordinary >>> users secure, is appreciated. >> >> If this is a reference to the "ShellShock" bash bugs (CVE-2014-6271 >> CVE-2014-7169), I'd like to point out that, like many "bash features", >> exported functions originated in Korn shell and the fact that >> OpenBSD's /bin/ksh doesn't implement them is a documented shortcoming >> of pdksh (see src/bin/ksh/NOTES). >> >> -- >> Christian "naddy" Weisgerber [email protected] > > Why just focusing on one little piece of the awesomeness ? > > Thanks for all the openBSD related projects and the core project ! > > -- > --------------------------------------------------------------------------------------------------------------------- > () ascii ribbon campaign - against html e-mail > /\
