On Fri, Sep 20, 2002 at 09:37:24AM +1000, Jeroen de Leeuw den Bouter wrote:
So to analyse what could have been wrong. is that dpkg might have
thought everything went ok for installation but it didn't
dpkg is very cautious in this respect, so I am hesitant to blame it. Have
you ever
Jeroen de Leeuw den Bouter [EMAIL PROTECTED] writes:
No, it checks a large and a small overflow. Jeroen, have you restarted
the httpd? If not, it is still running with the old library.
I shut the whole apache down (both http and http-ssl).
Oh, in this case, I am really interested in the
Jeroen de Leeuw den Bouter [EMAIL PROTECTED] writes:
No, it checks a large and a small overflow. Jeroen, have you restarted
the httpd? If not, it is still running with the old library.
I shut the whole apache down (both http and http-ssl).
Oh, in this case, I am really interested in the data
No, it checks a large and a small overflow. Jeroen, have you restarted
the httpd? If not, it is still running with the old library.
I shut the whole apache down (both http and http-ssl).
Oh, in this case, I am really interested in the data Lupe suggested to
collect. There might be a
On Wednesday, 2002-09-18 at 16:26:27 +1000, Jeroen de Leeuw den Bouter wrote:
On my Woody machine, after I restarted httpd, I get
1.2.3.4 443 PATCHED: detects small overflow, but crashes (0.9.6e)
1.2.3.4 443 VULNERABLE: does not detect small overflow
I don't get that number behind it
To: [EMAIL PROTECTED]
Subject: Re: SSL update.. still giving me a Vulnerable status
After updating libssl09 to the latest stable (0.9.4-6.woody.2)
version.
And running the openssl-sslv2-master script from
(http://cert.uni-stuttgart.de/advisories/openssl-sslv2-master.php)
The test program
On Tuesday, 2002-09-17 at 21:10:14 -0400, Noah L. Meyerhans wrote:
On Wed, Sep 18, 2002 at 10:55:24AM +1000, Jeroen de Leeuw den Bouter wrote:
After updating libssl09 to the latest stable (0.9.4-6.woody.2) version.
And running the openssl-sslv2-master script from
After updating libssl09 to the latest stable (0.9.4-6.woody.2)
version.
And running the openssl-sslv2-master script from
(http://cert.uni-stuttgart.de/advisories/openssl-sslv2-master.php)
The test program is being stupid and just looking at the version string.
It sees 0.9.4 and
On Wednesday, 2002-09-18 at 16:26:27 +1000, Jeroen de Leeuw den Bouter wrote:
On my Woody machine, after I restarted httpd, I get
1.2.3.4 443 PATCHED: detects small overflow, but crashes (0.9.6e)
1.2.3.4 443 VULNERABLE: does not detect small overflow
I don't get that number behind it
To: debian-security@lists.debian.org
Subject: Re: SSL update.. still giving me a Vulnerable status
After updating libssl09 to the latest stable (0.9.4-6.woody.2)
version.
And running the openssl-sslv2-master script from
(http://cert.uni-stuttgart.de/advisories/openssl-sslv2-master.php
On Wed, Sep 18, 2002 at 10:55:24AM +1000, Jeroen de Leeuw den Bouter wrote:
After updating libssl09 to the latest stable (0.9.4-6.woody.2) version.
And running the openssl-sslv2-master script from
(http://cert.uni-stuttgart.de/advisories/openssl-sslv2-master.php)
The test program is being
On Tuesday, 2002-09-17 at 21:10:14 -0400, Noah L. Meyerhans wrote:
On Wed, Sep 18, 2002 at 10:55:24AM +1000, Jeroen de Leeuw den Bouter wrote:
After updating libssl09 to the latest stable (0.9.4-6.woody.2) version.
And running the openssl-sslv2-master script from
On Wed, Sep 18, 2002 at 10:55:24AM +1000, Jeroen de Leeuw den Bouter wrote:
After updating libssl09 to the latest stable (0.9.4-6.woody.2) version.
And running the openssl-sslv2-master script from
(http://cert.uni-stuttgart.de/advisories/openssl-sslv2-master.php)
The test program is being
13 matches
Mail list logo
