[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] new openssl vulnerabilities
- Subject: Re: [cobalt-security] new openssl vulnerabilities
- From: davidblack <DavidBlack@xxxxxxxxxxxxxxx>
- Date: Thu, 1 Aug 2002 16:52:12 -0500
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
"Eugene Crosser" <crosser@xxxxxxxxxxx> wrote ..
> > > > How can I tell - which applications are running openssl shared
> libraries?
> > >
> > > If you don't know about them, the chances are that you don't have any.
> > > If you did not install openssl from rpm or from the source, you
> definitely
> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
> > > don't have any.
> ^^^^^^^^^^^^^^^
> > >
> > > If you, for example, compiled stunnel or SSL IMAPd, you might have
> > > made then dynamically linked.
> >
> >
> > Thanks for the reply.
> > I installed OpenSSH from PkgMaster.com, but I can't recall
> > which other apps I might have installed, from RPM or source.
> > Is there any way to tell, if anything is using the shared libs?
>
> See above. If you are still not sure, look if you have openssl shared
> libs
> at all. If you don't, then there cannot be applications dynamically linked
> against them 8-O Run "locate libssl" and see if there is any output.
>
> Eugene
Apparently, I do have the shared libs. Now what?
[root /root]# locate libssl
/lib/libssl.so.0.9.6b
/lib/libssl.so.2
/usr/lib/apache/libssl.so
/usr/local/ssl/lib/libssl.a
/usr/local/openssl-0.9.6b/libssl.a
[root /root]#
Thank you very much for your valuable time :o)
:D