[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-users] CERT Advisory CA-2002-27 Apache/mod_ssl Worm Upgrade Fix
- Subject: Re: [cobalt-users] CERT Advisory CA-2002-27 Apache/mod_ssl Worm Upgrade Fix
- From: "Dave Thurman (Mailing List Email)" <listonly@xxxxxxxxxxxxxxxxxxxx>
- Date: Sun Sep 15 09:16:02 2002
- List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>
on 9/15/02 10:09 AM, jale@xxxxxxxxxx stated:
> I'm glad that report may be of some help to people on this list - once
> someone gets all of this figured out, would they be so kind as to post a
> step-by-step method to do the upgrade? I'm sure I'm not the only one on
> this list great at following directions, just don't know where to start :)
We went ahead and upgraded the OpenSSL version to OpenSSL-0.9g
Here is what we did, also would like to add thanks to Gerald, he has his at
"e" and our Debians have had "g" for a week or so without any ill effects.
We just did this on a Raq4 but will probably be the same for a Raq3. Typical
disclaimer: Will kill any warranty on the server, worked for us but may not
work for you, blah, blah...
Login to your Raq server as admin and su to root.
cd to /usr/local/src
wget http://www.openssl.org/source/openssl-0.9.6g.tar.gz
tar xzvf openssl-0.9.6g.tar.gz
rm openssl-0.9.6g.tar.gz
cd openssl-0.9.6g/
## I did some digging on the Raq4 and our Debians. The stock config will
## place a ssl directory in /usr/local/ssl and I think that Cobalt is in
## /usr/share/ssl. Also both Debian and Cobalt have a /usr/bin/openssl so
## all should be okay.
./config ##will run and say that certain files exits. Don't worry.
make ##this takes a while, figure you told the kids to do dishes:))
make install
Done. We logged into the Raq4 with our self signed Cert and no problems.
Hope that helps...
--
Thanks!!
Dave Thurman
The Web Presence Group / www.webpresencegroup.net
Listonly <at> webpresencegroup.net / Spam Block 8^Q