[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] solarspeed openssl package

Subject: Re: [cobalt-security] solarspeed openssl package
From: "Dave Thurman (Mailing List Email)" <listonly@xxxxxxxxxxxxxxxxxxxx>
Date: Tue, 01 Oct 2002 18:48:05 -0500
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

on 10/1/02 3:50 PM, Michael Stauber stated:

> RaQ4-All-Security-2.0.1-2-15787.pkg fixes the /usr/lib/authenticate issues and
> a .htacess related problem, but NOT the mod_ssl/2.8.4 OpenSSL/0.9.6b Slapper
> vulnerability. Why Sun Cobalt didn't take the chance to fix two problems in
> one patch is beyond my knowledge. Instead they'll most likely bother us with
> another Apache-PKG in two months time. :o(
> 
> So the recommended course of actions would be this:
> 
> 1) Uninstall the Solarspeed PKG by running the uninstaller located at
> /var/lib/cobalt/uninstallers/mod_ssl-2.8.4.uninst
> 
> 2) Then apply RaQ4-All-Security-2.0.1-2-15787.pkg
> 
> 3) Re-apply the Solarspeed's RaQ4: Mod_SSL-2.8.4/OpenSSL-0.96g PKG

Thanks! I was thinking this would be the best way to go. Have you done such
a mean thing to the Raq4 washing machine?? I hate to have clothes that have
color transfer:)
-- 
Thanks!!
Dave Thurman
The Web Presence Group / www.webpresencegroup.net
Listonly <at> webpresencegroup.net / Spam Block 8^Q

Follow-Ups:
- Re: [cobalt-security] solarspeed openssl package
  - From: Michael Stauber

References:
- Re: [cobalt-security] solarspeed openssl package
  - From: Michael Stauber

Prev by Date: [cobalt-security] new sun cobalt patch
Next by Date: Re: [cobalt-security] solarspeed openssl package
Previous by thread: Re: [cobalt-security] solarspeed openssl package
Next by thread: Re: [cobalt-security] solarspeed openssl package

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index