In September 2014, internet was rocked by a widespread security flaw called shellshock. It seemed to affect everything from web servers serving CGI, to dhcpclient etc, and even some satellite television settop boxes.
The presenter was responsible for ensuring Red Hat / Fedora and its customers/users were protected against this. Red Hat not only pioneered the patch which was used, but also provided guidance to other distros/upstream.
This presentation is a brief look at how these kind of security issues affect open source, provide a brief time line of what happened and why and how developers can often help ease out the pain :)
Senior Principal Product Security Engineer, Red Hat
Huzaifa Sidhpurwala is the lead security architect working for Secure Development team of Product Security. He is responsible for secure development practices and tasks across the Red Hat portfolio. A Fedora contributor for over a decade, he speaks at open source conferences mainly... Read More →
