Secure server from heartbleed vulnerability

Update openssl and secure the server from heartbleed vulnerability

Vulnerable OpenSSL versions:

OpenSSL 1.0.1 vulnerable
OpenSSL 1.0.1a vulnerable
OpenSSL 1.0.1b vulnerable
OpenSSL 1.0.1c vulnerable
OpenSSL 1.0.1d vulnerable
OpenSSL 1.0.1e vulnerable
OpenSSL 1.0.1f vulnerable

NOT Vulnerable versions:

OpenSSL 1.0.1g is NOT vulnerable
OpenSSL 1.0.0 branch is NOT vulnerable
OpenSSL 0.9.8 branch is NOT vulnerable

1. Login to the server and do a yum update

yum update

2. Check the version of openssl

openssl version

3. If the openssl version is vulnerable, pleas do update by using the following steps.

rpm -ivh —nosignature http://rpm.axivo.com/redhat/axivo-release-6-1.noarch.rpm
yum –enablerepo=axivo update openssl

4. Do stop and start apache service manually

/etc/init.d/httpd stop
/etc/init.d/httpd start

5. Check the domain name in the below url

http://filippo.io/Heartbleed/

Enjoy
Thank you 🙂 😀

2 thoughts on “Secure server from heartbleed vulnerability”

Leave a Reply

Your email address will not be published. Required fields are marked *