forum.excito.com

Having fun boys?

For those of you concerned about the B3 webserver possibly allowing hackers to use this exploit, I did submit a couple of howto's that can help counter this some time ago.

Publish a web page on your B3 but *not* the admin page
This explains how to reconfigure apache so that you can access all functions on your B3, but people on the outside can't. It includes disabling the use of CGI.

Use Nginx for admin pages
Describes how to replace apache web server by nginx

In the mean time MouettE fixed the source of the problem by supplying us with a new bash version:

http://forum.mybubba.org/viewtopic.php?f=9&t=5664

Hi guys, I took away some semi-off-topic posts after a report from a user, hope you don't mind. Now breathe and feel the autumn sun shining at you. It's actually a very nice feeling.