From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <toke@toke.dk>
Received: from mail2.tohojo.dk (mail2.tohojo.dk [77.235.48.147])
	(using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
	(Client did not present a certificate)
	by huchra.bufferbloat.net (Postfix) with ESMTPS id ECD9721F2CC
	for <cerowrt-devel@lists.bufferbloat.net>;
	Wed, 24 Sep 2014 14:52:10 -0700 (PDT)
X-Virus-Scanned: amavisd-new at mail2.tohojo.dk
Sender: toke@toke.dk
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=toke.dk; s=201310;
	t=1411595496; bh=Og+6yxpyQ0n9ktU+XQ03vV3Oh0sFMha532zRoZ1UTWs=;
	h=From:To:Cc:Subject:References:Date:In-Reply-To;
	b=t3vAt7R3NjVFMEPlSf/VmSfnGFF7otKVTW6GCzj4O8o//rqsuIiOMB/ifNRMNHXP+
	11gV92wu9LlDVVW2JAkNpxU48mQ953owawpJ8/I8goLgFHbJU3YlAtrqSrq7sNqIK3
	9ItH9HdC/FBVpPI6JUJAzdupiskvsgNheP4xB1bc=
Received: by alrua-karlstad.karlstad.toke.dk (Postfix, from userid 1000)
	id 318B118E93A; Wed, 24 Sep 2014 23:52:01 +0200 (CEST)
From: =?utf-8?Q?Toke_H=C3=B8iland-J=C3=B8rgensen?= <toke@toke.dk>
To: Dave Taht <dave.taht@gmail.com>
References: <CAA93jw6ssG9624d+HrZuVwdE00r5=qNSv0va3dQweUJLbqjthw@mail.gmail.com>
Date: Wed, 24 Sep 2014 23:51:59 +0200
In-Reply-To: <CAA93jw6ssG9624d+HrZuVwdE00r5=qNSv0va3dQweUJLbqjthw@mail.gmail.com>
	(Dave Taht's message of "Wed, 24 Sep 2014 14:45:22 -0700")
Message-ID: <87sijgadq8.fsf@toke.dk>
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-=";
	micalg=pgp-sha1; protocol="application/pgp-signature"
Cc: "cerowrt-devel@lists.bufferbloat.net" <cerowrt-devel@lists.bufferbloat.net>
Subject: Re: [Cerowrt-devel] bash exploit heads up
X-BeenThere: cerowrt-devel@lists.bufferbloat.net
X-Mailman-Version: 2.1.13
Precedence: list
List-Id: Development issues regarding the cerowrt test router project
	<cerowrt-devel.lists.bufferbloat.net>
List-Unsubscribe: <https://lists.bufferbloat.net/options/cerowrt-devel>,
	<mailto:cerowrt-devel-request@lists.bufferbloat.net?subject=unsubscribe>
List-Archive: <https://lists.bufferbloat.net/pipermail/cerowrt-devel>
List-Post: <mailto:cerowrt-devel@lists.bufferbloat.net>
List-Help: <mailto:cerowrt-devel-request@lists.bufferbloat.net?subject=help>
List-Subscribe: <https://lists.bufferbloat.net/listinfo/cerowrt-devel>,
	<mailto:cerowrt-devel-request@lists.bufferbloat.net?subject=subscribe>
X-List-Received-Date: Wed, 24 Sep 2014 21:52:40 -0000

--=-=-=
Content-Type: text/plain

Dave Taht <dave.taht@gmail.com> writes:

> shows vulnerable for bash, not sh, on openwrt and cerowrt. That said,
> it makes me nervous. I've never really liked the redir.sh method cero
> uses to bounce people to the right web interface... suggestions to do
> it in javascript or something safer desired.

Doesn't the value of $SERVER_NAME come from the (static) lighttpd
configuration? In that case, redir.sh can be replaced with a static HTML
page.

If not, it's probably doable in the lighttpd configuration if a suitable
redirect/rewrite module is available. I forget the syntax, though,
haven't used lighttpd in ages; I'm sure Google knows, though.

-Toke

--=-=-=
Content-Type: application/pgp-signature; name="signature.asc"

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2

iQEcBAEBAgAGBQJUIzz/AAoJEENeEGz1+utPQz8H/17lB1G8wYBLUYoyW3uNfp/n
+HC4Q7x7vvPMJ+3zHl2vCPETXgWNvdTmP25faNCseL6ob0qpXU4ReWzbfS8Wqc7U
8MImT4YaRwbfFwMxX4LPG3unmuVjkHwpNPwSyP1XO6XarnGrSX3fQg+0QmPI88j6
OyPwCgW1AG/m0CU6yja7nQYhaAF6j6VlD/ZOFYFmSFpVPskhtuAPQcocbVqL6Ua2
O8QXqX2nV2kr36vg7L5Q/vfnM+/rzi/ojly5R7Uc5ARJ8BHh+iQTAg0LozF6bSzO
2cWI+9ysIUzYtbbmftxrvgOIOUPG7BQJUfGJjIcOpKYh+6PPo+s//F8Jp1MZcCQ=
=fSHv
-----END PGP SIGNATURE-----
--=-=-=--