LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices


Reply
  Search this Thread
Old 09-13-2002, 07:38 PM   #1
warhorse
LQ Newbie
 
Registered: Aug 2002
Location: Pittsburgh
Distribution: Debian
Posts: 24

Rep: Reputation: 15
OpenSSL buffer overflow attack


According to this:
http://apache.slashdot.org/article.p...72&threshold=4
Openssl <e is vulnerable to a buffer overflow attack an is prevelent in default installs of many Linux distros. My question is this: I'm installing the newest version from the openssl site. They're tarballs. Do I have to reboot for it to take effect?

Thanks
 
Old 09-13-2002, 08:45 PM   #2
barrynewt
LQ Newbie
 
Registered: Aug 2002
Posts: 23

Rep: Reputation: 15
nope,
you usually have to only log out of your account and then back in
 
Old 09-13-2002, 10:02 PM   #3
rverlander
Member
 
Registered: May 2002
Distribution: A few
Posts: 488

Rep: Reputation: 30
U also needa relink everything linked into it
 
Old 09-13-2002, 10:59 PM   #4
warhorse
LQ Newbie
 
Registered: Aug 2002
Location: Pittsburgh
Distribution: Debian
Posts: 24

Original Poster
Rep: Reputation: 15
Bah, I'll just reboot it. I don't want to mess anything up. Thanks.
 
Old 09-14-2002, 07:26 PM   #5
stickman
Senior Member
 
Registered: Sep 2002
Location: Nashville, TN
Posts: 1,552

Rep: Reputation: 53
After you've rebuilt the OpenSSL binaries, you'll need to relink anything that is statically linked to the libraries, such as SSH or mod_ssl.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
What is a buffer overflow Joey.Dale Linux - Security 4 07-12-2004 05:12 PM
Buffer Overflow pymehta Linux - Security 7 02-24-2004 01:19 PM
buffer overflow cxel91a Programming 3 08-14-2003 05:23 PM
Q. What is a buffer overflow? auslew Linux - Security 2 11-08-2002 05:36 AM
A buffer overflow attack gains an attacker an advantage when comprised by setuserid a adamrau Linux - Security 2 12-20-2001 01:32 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Software

All times are GMT -5. The time now is 03:38 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration