This cookbook is designed to test and optionally remediate the bash "shellshock" bug, more formally known as cve-2014-7169.
- Tested on CentOS 6.5
- Tested on Ubuntu 12.04
- chef_handler
List attributes here
- Audits and remediates cve-2014-7169 ("Shellshock")
- Installs an OHAI plugin that will automatically audit nodes for the Shellshock vulnerability, and sets a node attribute marking the node as vulnerable.
- If the node is marked vulnerable by the audit recipe, this recipe will attempt to upgrade bash via the native packaging system. Includes the audit recipe.
Author:: Chef Software, Inc (support@getchef.com)
Copyright:: 2014, Chef Software, Inc.
Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.
- Fork it
- Create your feature branch (
git checkout -b my-new-feature) - Commit your changes (
git commit -am 'Add some feature') - Push to the branch (
git push origin my-new-feature) - Create new Pull Request