Re: About the openssl hole
From: patpro (patpro@patpro.net)
Date: 08/01/02
- Next message: Edwin Groothuis: "openssh-3.4p1.tar.gz trojaned"
- Previous message: Mikhail A. Khadanovich: "unsubscribe: 'security@freebsd.org' is not a member of list 'freebsd-security'."
- In reply to: Darren Pilgrim: "Re: About the openssl hole"
- Next in thread: Dirk Meyer: "Re: About the openssl hole"
- Reply:(deleted message) Dirk Meyer: "Re: About the openssl hole"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 1 Aug 2002 08:55:44 +0200 From: patpro <patpro@patpro.net> To: freebsd-security@freebsd.org
Hi,
I currently have a FreeBSD server and provide services like apache/ssl, pop/
ssl, smtp/ssl...
I don't have physical access to the box.
If I just :
- update openSSL port
- recompile every port that use openSSL (openSSH, Apache+mod_ssl, ....)
will I be safe from remote attack ?
Is the make-world compulsory to guaranty security from outside the box, or
is it just the way to guaranty the security from both inside and outside ?
I'm not paranoid about local exploit, only 2 people have a shell on the box
and they also have the root passwd (my partners).
A remote make-world is not a manipulation I whould be happy to do :/
thanks,
patpro
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
- Next message: Edwin Groothuis: "openssh-3.4p1.tar.gz trojaned"
- Previous message: Mikhail A. Khadanovich: "unsubscribe: 'security@freebsd.org' is not a member of list 'freebsd-security'."
- In reply to: Darren Pilgrim: "Re: About the openssl hole"
- Next in thread: Dirk Meyer: "Re: About the openssl hole"
- Reply:(deleted message) Dirk Meyer: "Re: About the openssl hole"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
