Re: CVE-2014-0160 CentOS 6 openssl heartbleed workaround

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] 

On 2014-04-08, Robert Arkiletian <robark@xxxxxxxxx> wrote:
>
> if you include libcrypto in the grep then sshd is affected.

That's unfortunate.  :(  Is the bug in libssl, libcrypto, or both?

Since sshd is in doubt, I would like to force my users to change their
password, which is stored on a central openldap server.  What's the
canonical CentOS way to do this?  I've done some web searches for some
answers, but haven't found anything really definitive, just some
workarounds and some crude hacks.

--keith

-- 
kkeller@xxxxxxxxxxxxxxxxxxxxxxxxxx


_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos
[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]
  Powered by Linux