Is Palo vulnerable to the shell shock Linux bug?

Is Palo vulnerable to the shell shock Linux bug?

http://www.theregister.co.uk/2014/09/24/bash_shell_vuln/

Shellshock vulnerability prevention

Does someone know if the PA can automatically block the bash traffic of the shellshock vulnerability?  If not what would be the best rule to protect the dmz servers?

thanks

Shell Shocked Bug

Any update from Palo Alto on the Shell Shock Bug that has been reported?

Palo Alto Proxy Server VM

I have a Tech Note for the YouTube for Schools and Google, Bing, and Yahoo SafeSearch. However, I cannot seem to find the VM for the proxy server that Palo Alto has created.

Is there a link for this somewhere?

SNAT vs DNAT

On our firewall we have some inbound web servers with static NAT policies using SNAT and others inbound web servers/services with DNAT policies.  I am trying to figure out which one i should be using.  For example the company we hired to implement ou

PA-200 does not start up anymore

Hello,

all for a sudden my PA-200 is not starting up anymore.

The symptomatic is as follows:

- after power up the device the status of all LED (on network ports) is permanently green

- the status of "power" and "fan" is green

- the status of all other led

How to effetively cut off communication at a scheduled time

Hi,

We are running a PA500 box with software at ver 6.0.4. at a boarding school.

At a certain time during the night we need to switch off internet access completely (so the students get som sleep before next day).  When we do this using schedules in se

Microsoft office 365.

I have a customer that uses Office365, and I found out a few weeks ago that this failed due to Microsoft changing their IP's.

I have looked and so far Microsoft seem to not give FQDN for their server supporting the office suite that I can find.

I have

User Identification using Windows NPS?

Is it possible to have the user ID agaent look at NPS events to determin a user is authenticated?  I am trying to find a way to ID users on a wireless network without using captive portal.  My users are all Active Directory users and the devices they

Experience with PANOS 6 so far ?

I installed PANOS 6 on our Lab Box. Upgraded from 5.0.9. No problems so far.

Anyone else ?

malware??

Dumb question perhaps, but why is www.googletagservices.com/tag/js/gpt.js being flagged as a malicious URL?  It doesn't come up that way in PA's URL filtering site.

It's created a considerable jump in my botnet list.

Thanks in advance...

//moe

Wildfire Signature Based Blocks

Hopefully a quick question - is there any way to determine whether a executable has been blocked because it was a Wildfire derived signature (for paying customers).  It may be obvious when it happens, but hard to know if it has etc.

Would like to be a

Site-2-Site IPSEC Tunnel won't come online

i have three offices:

office 1: US - northeast    1.1.1.1  PAN-500HA

Office 2: US - southeast   2.2.2.2 PAN-3020HA  HQ site

Office 3: Shanghai China  3.3.3.3 PAN-200

all three IPSEC tunnels were up and running.  My Office 3 moved locations and when they