Shellshock Jolts Industry, Could be Worse than Heartbleed

john-graham-cumming-cloudflare
John Graham-Cumming, lead programmer, CloudFlare

Last week, the US government announced that it was aware of a new vulnerability affecting the Bourne Again Shell (Bash), with some experts saying that over half of servers globally could be at risk. In media reports, it's often been called the Bash Bug, but Bash is the shell through which the bug, Shellshock, was introduced. A shell is the program-in this case, run on Unix or Linux-where the user types in commands on his or her computer. Bash is the most common shell on the internet. The Shel