Knowledgebase

Portal Home > Knowledgebase > Articles Database > curlSSL - Openssl heart bleed bug may not updated


curlSSL - Openssl heart bleed bug may not updated




Posted by Syslint, 05-04-2014, 02:11 AM
Issue: If you are using cPanel servers , then there is a chance that your curlssl is still using old openssl which have the heart bleed bug. For checking this, simply create a phpinfo page and look under curl, you see the curl supported openssl version. But at the same time if you check the openssl section you will see the latest updated version. You may need to make sure that the curlssl also use the updated version of openssl. You have to remove the curlssl from the cPanel server adn recompile the php for fixing this issue as follows, # rm -rf /opt/curlssl # /scripts/easyapache This will fix the issue.
Posted by derbyshireluke, 05-05-2014, 05:33 AM
Thanks! It's nice to see everyone looking out for each other in this forum - like one big family
Posted by avibodha, 05-05-2014, 03:01 PM
thanks for the info! just an fyi, for our updated WHM servers, phpinfo shows curlssl using OpenSSL 1.0.0 which is NOT vulnerable to heartbleed according to this: http://syslint.com/syslint/how-to-ch...elwhm-servers/ fyi
Posted by web-project, 05-05-2014, 05:38 PM
I think for majority of hosting providers did the right choice to select Centos 5 or RHEL 5 for their servers as it's use the OpenSSL 0.9.8e which is not affected by heart bleed bug
Posted by Syslint, 05-06-2014, 02:47 AM
I think almost all servers have the patched versions at this time. This may be only affected in old servers which are not compiled with the new php. It will be good to check it.
Posted by rustelekom, 05-08-2014, 08:19 AM
Perhaps it could be good idea to check potential problematic package by using query package dependencies (this page might help): http://www.cyberciti.biz/faq/how-do-...-rpm-file-has/
Posted by ayksolutions, 05-09-2014, 08:51 AM
Per the original thread, you can use the following command after patching to see if any programs are still using the old openssl version:
Posted by tttggg0101, 05-14-2014, 02:22 PM
Did you enable the ssl mode


Was this answer helpful?

Add to Favourites Add to Favourites    Print this Article Print this Article

Also Read
system error 53 samba (Views: 496)
Can someone do us a favour? (Views: 513)
Prevent flash from cache? Direct stream? (Views: 773)
Opening CSF ports to work with a dynamic ip (Views: 530)
BIG lighttpd rewrite rules request (Views: 511)

Language: