The scope of the issue isn't limited to SSH, that's just a popular example people are using. Any program calling bash could potentially be vulnerable.
On Wed, Sep 24, 2014 at 6:11 PM, Jim Popovitch <jim...@gmail.com> wrote: >> debian/ubuntu admins may want to apt-get update/upgrade or whatever > > debian/ubuntu aren't really all that immediately impacted. > > $ grep "bash$" /etc/passwd | wc -l > 2 > > ^^ both of those are user accounts, not system/daemon accounts. > > -Jim P.
