• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 336
  • Last Modified:

How can I identify EMERGING THREAT – OpenSSL “HeartBleed” Vulnerability in our Linux servers

Please let me know the commands to verify if OpenSSL versions 1.0.1 through 1.0.1f are installed, running or being use in my Linux servers.I have 200 Linux servers and vm's
0
oo_tatang
Asked:
oo_tatang
1 Solution
 
TintinCommented:
To check the package versions depends on which Linux distro you are using.

To check the openssl version, just run

openssl version
0
 
serialbandCommented:
You can scan your server here:  http://filippo.io/Heartbleed/

There's more information about Heartbleed here: http://heartbleed.com/

Here's a howto:
http://www.howtoforge.com/find_out_if_server_is_affected_from_openssl_heartbleed_vulnerability_cve-2014-0160_and_how_to_fix

Just because you have the version, doesn't mean you are vulnerable.  You may be patched, if your distro released a compiled version without the heartbeat..  You can probably just grep for the variable in the lib to see if it exists or not.
egrep dtls1_process_heartbeat libssl.so.1.0.0

http://www.experts-exchange.com/OS/Linux/Q_28402987.html#a39987838
0
 
Brian UtterbackPrinciple Software EngineerCommented:
Keep in mind that outgoing connections are potentially vulnerable too. Any process that uses OpenSSL to implement its SSL client functions is also vulnerable. And sometimes a package will include a private copy of OpenSSL so it may not be obvious that a particular packe is vulnerable and needs patching. You need to do an audit of your incoming and outgoing network connections and then identify the products making those connections and determine their risk. If your servers only accept incoming connections then your task is much easier. But if they connect to other systems on occasion, then you need to look at those client processes too.
0

Featured Post

Never miss a deadline with monday.com

The revolutionary project management tool is here!   Plan visually with a single glance and make sure your projects get done.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now