Hi, After seeing the CERT Advisory, I thought I will upgrade my openssl used by apache/mod_ssl. When I checked, there were 2 versions(0.9.6a and 0.9.6e) of openssl installed and my apache(ssl) "config.status" says that the SSL_BASE parameter is set to the older version. The libraries(libssl and libcrypto) under /usr/lib dir belongs to the new version(0.9.06e) and the command 'ldd /usr/bin/httpd' lists the newer version too.
Do I need to recompile the apache with the SSL_BASE parameter set to newer version?? Thanks in advance, siva But before doing it I had checked the list of shared dependent library of httpd(ssl version) using the command 'ldd'. In that list, I noticied that the httpd exec is using the safer version(0.9.6e) of openssl libraries(libssl and libcrypto). Does this mean that I am in a safer side, Even if > > > Binand> ipchains -I input -p udp --dport 2002 -j REJECT -l > > >>> Binand> ipchains -I input -p udp --sport 2002 -j REJECT -l >>> >>>I've forgotten most of ipchains (more familiar with iptables now), but >>>shouldn't you be blocking outgoing traffic destined for port 2002? >>> >>> >>They were the rules I applied to my gateways :-) Don't even allow these >>packets to come in. >> >>But yes, you are correct. Apply those two to both input and output chains. >> >> >> > > > > >------------------------------------------------------- >This SF.NET email is sponsored by: AMD - Your access to the experts >on Hammer Technology! Open Source & Linux Developers, register now >for the AMD Developer Symposium. Code: EX8664 >http://www.developwithamd.com/developerlab >_______________________________________________ >linux-india-help mailing list >[EMAIL PROTECTED] >https://lists.sourceforge.net/lists/listinfo/linux-india-help > > > > ------------------------------------------------------- This SF.NET email is sponsored by: AMD - Your access to the experts on Hammer Technology! Open Source & Linux Developers, register now for the AMD Developer Symposium. Code: EX8664 http://www.developwithamd.com/developerlab _______________________________________________ linux-india-help mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/linux-india-help
