標籤:style blog http color io os ar sp 檔案
由於最近曝出linux的bash漏洞,想更新下bash,於是 想到了配置CentOS yum source。
測試bash漏洞的命令:
env x=‘() { :;}; echo "Your bash version is vulnerable"‘ bash -c "echo This is a test" Your bash version is vulnerableThis is a test
在此感謝網易的鏡像檔案!
1.刪除redhat原有的yum rpm -aq|grep yum|xargs rpm -e --nodeps 2.訪問網易提供的Linux yum源http://mirrors.163.com/centos/6/os/x86_64/Packages/找到對應的yum 安裝包wget http://mirrors.163.com/centos/6/os/x86_64/Packages/yum-3.2.29-40.el6.centos.noarch.rpm wget http://mirrors.163.com/centos/6/os/x86_64/Packages/yum-metadata-parser-1.1.2-16.el6.x86_64.rpm wget http://mirrors.163.com/centos/6/os/x86_64/Packages/yum-plugin-fastestmirror-1.1.30-14.el6.noarch.rpmwget http://mirrors.163.com/centos/6/os/x86_64/Packages/python-iniparse-0.3.1-2.1.el6.noarch.rpm 3.進行安裝yum rpm -ivh python-iniparse-0.3.1-2.1.el6.noarch.rpm rpm -ivh yum-metadata-parser-1.1.2-16.el6.x86_64.rpm rpm -ivh yum-3.2.29-40.el6.centos.noarch.rpm yum-plugin-fastestmirror-1.1.30-14.el6.noarch.rpm 4.更新repo檔案mv /etc/yum.repos.d/rhel-debuginfo.repo /etc/yum.repos.d/rhel-debuginfo.repo.repo.bakvi /etc/yum.repos.d/rhel-debuginfo.repo[base]name=CentOS-$releasever - Basebaseurl=http://mirrors.163.com/centos/6/os/x86_64/$basearch/gpgcheck=1gpgkey=http://mirrors.163.com/centos/RPM-GPG-KEY-CentOS-6#released updates[updates]name=CentOS-$releasever - Updatesbaseurl=http://mirrors.163.com/centos/6/updates/x86_64/$basearch/gpgcheck=1gpgkey=http://mirrors.163.com/centos/RPM-GPG-KEY-CentOS-6#packages used/produced in the build but not released[addons]name=CentOS-$releasever - Addonsbaseurl=http://mirrors.163.com/centos/$releasever/addons/$basearch/gpgcheck=1gpgkey=http://mirrors.163.com/centos/RPM-GPG-KEY-CentOS-6#additional packages that may be useful[extras]name=CentOS-$releasever - Extrasbaseurl=http://mirrors.163.com/centos/6/extras/x86_64/$basearch/gpgcheck=1gpgkey=http://mirrors.163.com/centos/RPM-GPG-KEY-CentOS-6#additional packages that extend functionality of existing packages[centosplus]name=CentOS-$releasever - Plusbaseurl=http://mirrors.163.com/centos/6/centosplus/x86_64/gpgcheck=1enabled=05、yum clean all6、yum update bash --測試一下
要注意一下路徑的問題,其中要注意basearch、$releasever兩個變數的值。
[[email protected]alhost yum.repos.d]# env x=‘() { :;}; echo "Your bash version is vulnerable"‘ bash -c "echo This is a test"This is a test[[email protected] yum.repos.d]#
配置好了yum源,也更新了bash命令。
參考部落格:
http://blog.chinaunix.net/uid-20940095-id-3275311.html
http://www.cnblogs.com/linuxer/archive/2011/11/10/2272521.html
Redhat 6 配置CentOS yum source