Re: apache mod_ssl ?
From: Mike Tancsa (mike@sentex.net)
Date: 07/31/02
- Next message: FreeBSD Security Advisories: "FreeBSD Security Advisory FreeBSD-SA-02:32.pppd"
- Previous message: Jacques A. Vidrine: "Re: OpenSSL workaround"
- In reply to: Sune Stjerneby: "Re: apache mod_ssl ?"
- Next in thread: Garrett Wollman: "Re: apache mod_ssl ?"
- Reply: Garrett Wollman: "Re: apache mod_ssl ?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 31 Jul 2002 07:57:30 -0400 To: Sune Stjerneby <sst@vmunix.dk> From: Mike Tancsa <mike@sentex.net>
Thanks, looks like my local copy libphp4.so as well :-( Anyone know of any
other apps statically compiled with bits of the vulnerable openssl out of
the ports that would be affected ?
---Mike
At 10:56 AM 7/31/2002 +0200, Sune Stjerneby wrote:
>Mike Tancsa writes:
> >After a buildworld, do I need to worry about apache with mod_ssl ? Are
> >there parts that are statically compiled using openSSL ?
>
>I suspect so,
>
>% strings /usr/local/libexec/apache/libssl.so | egrep "0\.9\.6"
>OpenSSL 0.9.6a 5 Apr 2001
>
>After a rebuild, it reads "OpenSSL 0.9.6e 30 Jul 2002" in
>apache/libssl.so.
>
>--
>Sune Stjerneby <sst@vmunix.dk>
> % bloto flem rech rech kini
--------------------------------------------------------------------
Mike Tancsa, tel +1 519 651 3400
Sentex Communications, mike@sentex.net
Providing Internet since 1994 www.sentex.net
Cambridge, Ontario Canada www.sentex.net/mike
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
- Next message: FreeBSD Security Advisories: "FreeBSD Security Advisory FreeBSD-SA-02:32.pppd"
- Previous message: Jacques A. Vidrine: "Re: OpenSSL workaround"
- In reply to: Sune Stjerneby: "Re: apache mod_ssl ?"
- Next in thread: Garrett Wollman: "Re: apache mod_ssl ?"
- Reply: Garrett Wollman: "Re: apache mod_ssl ?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
