Solved

OpenSSL

Posted on 2014-04-15
7
325 Views
Last Modified: 2014-04-15
I want to know if I have an OppenSSL  shared object on my linux system

What is the precise name (and hopefully file size) of the .so I need to detect is on my system?
0
Comment
Question by:Anthony Lucia
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
  • 2
7 Comments
 
LVL 38

Accepted Solution

by:
Rich Rumble earned 167 total points
ID: 40001632
Which linux distro?
For redhat, fedora, centos:
rpm -qa |grep -i openssl

OpenSSL is by default installed on most distro's, but the non-affected version of heart-bleed is 1.0.1g and above. http://en.wikipedia.org/wiki/Heartbleed_bug#Affected_OpenSSL_installations

I love points, but a lot of the questions you have can be answered by a few google searches, I'm glad you trust experts, but I bet quite a few of the questions can be solved with a few more searches perhaps.
-rich
0
 

Author Comment

by:Anthony Lucia
ID: 40001658
I did the following:

rpm -qa |grep -i openssl
pyOpenSSL-0.10-2.el6.x86_64
openssl-1.0.1e-16.el6_5.x86_64

So this looks like I am sfe, and I have a non-affected version

But after doing searches, I still do not know what the actual .so name of the shared object is.

Does any one know what the share object of OpenSSL is named ?
0
 
LVL 35

Assisted Solution

by:Seth Simmons
Seth Simmons earned 333 total points
ID: 40001662
you actually want to use ql with rpm instead of qa
qa will just show the package name while ql will show the associated files

rpm -ql | grep -i openssl

Open in new window

0
Simplifying Server Workload Migrations

This use case outlines the migration challenges that organizations face and how the Acronis AnyData Engine supports physical-to-physical (P2P), physical-to-virtual (P2V), virtual to physical (V2P), and cross-virtual (V2V) migration scenarios to address these challenges.

 
LVL 35

Expert Comment

by:Seth Simmons
ID: 40001667
So this looks like I am sfe, and I have a non-affected version

the version you have is e which is affected
0
 

Author Comment

by:Anthony Lucia
ID: 40001710
Does any one know what the name of the share object of OpenSSL, or since it was installed with RPM, does this meant that there will not be a shared object
0
 
LVL 35

Assisted Solution

by:Seth Simmons
Seth Simmons earned 333 total points
ID: 40001772
look at the command options with rpm i posted before
it will list the files associated with the package(s)
on a RHEL 6.2 system i have here i see .so files in /usr/lib64/openssl/engines
0
 
LVL 38

Expert Comment

by:Rich Rumble
ID: 40001774
You need to upgrade, "e" is lower than G so it was/is affected. upgrading to G (yum update openssl) should take care of it. But if not, you can find many RPM's for your distro, which I still don't know (redhat? CentOS? Fedora? other?)
The EL rpm's I think are RedHat/CentOS, so try updating using YUM

or manually compile:
cd /usr/src
wget https://www.openssl.org/source/openssl-1.0.1g.tar.gz -O openssl-1.0.1g.tar.gz

tar -zxf openssl-1.0.1g.tar.gz
cd openssl-1.0.1g
./config
make
make test
make install

openssl version

If it shows old version do the steps below.

mv /usr/bin/openssl /root/
ln -s /usr/local/ssl/bin/openssl /usr/bin/openssl

Open in new window

Some other tips here from redhat too
https://access.redhat.com/site/solutions/781793
-rich
0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Email attacks are the most common methods for initiating ransomware and phishing scams. Attackers want you to open an infected attachment or click a malicious link, and unwittingly download malware to your machine. Here are 7 ways you can stay safe.
This process allows computer passwords to be managed and secured without using LAPS. This is an improvement on an existing process, enhanced to store password encrypted, instead of clear-text files within SQL
Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to moveā€¦
How to Install VMware Tools in Red Hat Enterprise Linux 6.4 (RHEL 6.4) Step-by-Step Tutorial
Suggested Courses

628 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question