Published at LXer:
Do you have SELinux enabled on your Web Server? Lots of people are asking me about SELinux and the Bash Exploit. I did a quick analysis on one reported remote Apache exploit:
http://www.reddit.com/r/netsec/comme..._through_bash/ Shows an example of the bash exploit on an apache server. It even shows that SELinux was enforcing when the exploit happened.
Read More...