[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [cobalt-security] new openssl vulnerabilities
- Subject: RE: [cobalt-security] new openssl vulnerabilities
- From: "David Black" <DavidBlack@xxxxxxxxxxxxxxx>
- Date: Thu, 1 Aug 2002 13:47:17 -0500
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
How can I tell - which applications are running openssl shared libraries?
Thank you very much, for your valuable time and knowledge, everyone.
:D
--
David Black
http://theWaveCave.com
Web Site design, hosting, and programming
Custom multimedia, animation and graphics
> -----Original Message-----
> From: Eugene Crosser [mailto:crosser@xxxxxxxxxxx]
> Sent: Tuesday, July 30, 2002 11:26 AM
> To: cobalt-security@xxxxxxxxxxxxxxx
> Subject: Re: [cobalt-security] new openssl vulnerabilities
>
> Strictly speking, everything statically linked against openssl libraries
> needs to be replaced. On a typical Cobalt appliance, this includes Apache
> and OpenSSH. Thanks to the nice guys from Netherlands, we already have
> replacement OpenSSH. With Apache, I'm afraid we'll have to wait for Sun to
> come up with update (or compile it ourselves).
>
> If you have applications linked dynamically against openssl libraries, you
> need to replace the openssl shared libraries, and can leave said
> applications untouched.
>
> Eugene
> _______________________________________________
> cobalt-security mailing list
> cobalt-security@xxxxxxxxxxxxxxx
> http://list.cobalt.com/mailman/listinfo/cobalt-security
------- End of Original Message -------