[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-users] CERT Advisory CA-2002-27 Apache/mod_ssl WormUpgrade Fix done it
- Subject: Re: [cobalt-users] CERT Advisory CA-2002-27 Apache/mod_ssl WormUpgrade Fix done it
- From: "ISEE Multimedia" <mail@xxxxxxxxxxxxxxxxxxx>
- Date: Sun Sep 15 12:57:18 2002
- List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>
> > We just did this on a Raq4 but will probably be the same for
> > a Raq3. Typical
> > disclaimer: Will kill any warranty on the server, worked for
> > us but may not
> > work for you, blah, blah...
> >
> > Login to your Raq server as admin and su to root.
> > cd to /usr/local/src
> > wget http://www.openssl.org/source/openssl-0.9.6g.tar.gz
> > tar xzvf openssl-0.9.6g.tar.gz
> > rm openssl-0.9.6g.tar.gz
> > cd openssl-0.9.6g/
> >
> > ## I did some digging on the Raq4 and our Debians. The stock
> > config will
> > ## place a ssl directory in /usr/local/ssl and I think that
> > Cobalt is in
> > ## /usr/share/ssl. Also both Debian and Cobalt have a
> > /usr/bin/openssl so
> > ## all should be okay.
> >
> > ./config ##will run and say that certain files exits. Don't worry.
> > make ##this takes a while, figure you told the kids to do dishes:))
> > make install
> >
> > Done. We logged into the Raq4 with our self signed Cert and
> > no problems.
Will doing this affect any authority signed certificates on the server? i.e.
Thawte?
I dont want to go and break them, but i do want the server to be secure.
Regards
Mark