Hi brief question for a possible addendum. I believe one should at least restart services which are currently using openssl after patching it, right, e.g. trying to figure out by lsof -n | grep openssl.
(or reboot the machine) Would it make sense to add that to the DSA 3500-1 page, like for DSA-3481[1]? Cheers Carsten [1] "While it is only necessary to ensure that all processes are not using the old glibc anymore, it is recommended to reboot the machines after applying the security upgrade." -- Dr. Carsten Aulbert, Atlas cluster administration Max Planck Institute for Gravitational Physics (Albert Einstein Institute) Callinstraße 38, 30167 Hannover, Germany Tel: +49 511 762 17185, Fax: +49 511 762 17193
