Heartbleed: OpenSSL Vulnerability

[junior riau]

update cepetan
ada script honeypot nya di packetstormsecurity

http://packetstormsecurity.com/files/126068/Heartbleed-Honeypot-Script.html

 

[gonggo]

cek disini katanya
http://filippo.io/Heartbleed/

 

[hostune]

ayo yang base os nya pake RedHat 6, CentOS 6, and CloudLinux 6, segera dipatch karena bawaan openssl nya masuk dalam list tuh.

 

[galuh82]

nambaihin ref saja: http://cpanel.net/heartbleed-vulnerability-information/

 

[dhimas]

sudah update ke versi 1.0.1g kok katanya masih vuln ya

[update]
server need reboot
jangan lupa yaa

Ikutan update Tuan..

 

[dhimas]

nambaihin ref saja: http://cpanel.net/heartbleed-vulnerability-information/

Okay Tuan, josss

 

[junior riau]

iya Tuan, eh ternyata restart apache saja

 

[sigmabisnis]

Kalo yang pake centOs 5 enggak vulnerable kan yaah?
"RHEL/CentOS 5 servers which are using the OpenSSL 0.9.8 RPM included in the official OS repositories are not vulnerable since they are using an older version of OpenSSL that never contained this vulnerability."

 

[amudy17]

pakek cara ini buat nambah bug heartbleed ya, barangkali bisa

http://stackoverflow.com/questions/...-openssl-in-centos-6-5-linux-unix-from-source

 

[amudy17]

Any problem with manually compiling openssl as follows:

cd /usr/src

wget https://www.openssl.org/source/openssl-1.0.1g.tar.gz -O openssl-1.0.1g.tar.gz

tar -zxf openssl-1.0.1g.tar.gz

cd openssl-1.0.1g

./config

make

make test

make install

openssl version

If it shows old version do the steps below.

mv /usr/bin/openssl /root/

ln -s /usr/local/ssl/bin/openssl /usr/bin/openssl

openssl version
OpenSSL 1.0.1g 7 Apr 2014