Friday, September 26, 2014

Quick easy way to determine if your *nix system is vulnerable to Shellshock

Run this command from your terminal:

x='() { :;}; echo VULNERABLE' bash -c :

Systems that are vulnerable will return:

$ x='() { :;}; echo VULNERABLE' bash -c :
VULNERABLE

Systems that have been patched will return:

$ x='() { :;}; echo VULNERABLE' bash -c :
bash: warning: x: ignoring function definition attempt
bash: error importing function definition for `x'

For an in depth analysis and explanation go here: http://security.stackexchange.com/questions/68168/is-there-a-short-command-to-test-if-my-server-is-secure-against-the-shellshock-b

This guy does a much better job than I could ever hope to.





Wednesday, September 24, 2014

AutoDesk Network License Manager report log generation

Ran into this issue today.. we are in the midst of moving to an big Autodesk license pool controlled by our parent company.  A small pre-requisuite of that is generating usage or report logs, a default install of LMTOOLS does not have that enabled.

To do so you create a file named 'autodesk.opt', open with Notepad and type teh following:

REPORTLOG +c:path\to\working\dir\name.rl

Save the file, and re-read the license file to start the logging.