Q: I presume someone out there understands this techno speak.
To the layman like me its all double dutch. A more user friendly explanation would be more helpful. Thank you.
Posted on Oct 17, 2014 12:24 AM
It means that if you run a web server on your Mac AND your web server using CGI server side scripts AND those scripts are written as bash shell scripts or are invoked via bash or during their execution they invoke bash, then there is a risk of code injection.
Very few Mac users run a web server on their Macs.
If you allow anonymous remote Secure Shell (SSH) logins (for example you are running a GITHub source code distribution system), there is a risk. Then again allowing anonymous people login to your Mac is a risk in itself.
Even fewer Mac users allow anonymous ssh login's.
Posted on Oct 19, 2014 12:00 PM