As a small-time dev do I have to worry about shellshock? I have an extremely small team, lots of projects and no resources or capacity to spend on securing our web applications. I host with one of the big guys, we don't run our servers from our shop or anything like that. Without the capacity to spare man-hours battening down the hatches- how big of a deal is being on top of this for a run-of-the-mill dev team with low-level, no-big-deal development, hosted elsewhere? My main concern is unwittingly leaving clients servers/applications vulnerable and them falling under nefarious control... |