[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-users] Fixing the nasty RaQ Hack
- Subject: Re: [cobalt-users] Fixing the nasty RaQ Hack
- From: Jeff Lasman <jblists@xxxxxxxxxxxxx>
- Date: Sun Jan 26 19:18:00 2003
- Organization: nobaloney.net
- List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>
Greg Boehnlein wrote:
> Since I'm responsible for the OpenSSL 0.9.7 RPMS, I'll just point
> out that these will only help applications that are compiled to
> dynamically load the OpenSSL libraries. Cobalt's Apache uses Mod_SSL which
> is statically linked against a 0.9.6 version of OpenSSL. If you were so
> inclined, you COULD re-build the Apache/ModSSL RPMs using the OpenSSL
> 0.9.7 RPM that I have posted, but you would also have to install
> Stackguard (http://immunix.org) to eliminate possible Stack Smashing
> exploits in Apache.
Greg, I've got some systems that won't take the new openssl rpm; they
report a dependency with openssl-perl-0.9.6b.
Any ideas how this might have happened? I've got, for example, two
systems that I've been responsible since the beginning. Both of them
are up-to-date. One has openssl-perl installed and hence the
dependency, and the other doesn't <frown>.
If you or someone else who understands how to fix this perl dependencey
(rpmfind doesn't <frown>), I can restore a few more systems and post a
cookbook on my website. Otherwise I'm stuck, as I'm NOT a perl guy.
Jeff
--
Jeff Lasman, nobaloney.net, P. O. Box 52672, Riverside, CA 92517 US
Internet & Unix/Linux/Sun/Cobalt Consulting +1 909 778-9980
Our jblists address used on lists is for list email only
To contact us offlist: "http://www.nobaloney.net/contactus.html";