Hacker News new | ask | show | jobs
by kukkukb 4450 days ago
I have a bunch of servers on Ubuntu 12.04LTS. Did the test. Came back as vulnerable. Then did an apt-get upgrade, which upgraded a bunch of SSL services. Did the test again. Still vulnerable.

What else should I do?
2 comments
robryk 4450 days ago
Restart the services. Run:

  grep -l 'libssl.*deleted' /proc/*/maps
And restart all processes listed.
link
nmcfarl 4450 days ago
On Ubuntu 12.04LTS you need to upgrade both 'libssl1.0.0' and 'openssl' - I’d check that the version of both is: 1.0.1-4ubuntu5.12

And then restart everything that comes back from a

     sudo lsof -n | grep ssl | grep DEL
link
kukkukb 4449 days ago
Excellent! That did the trick. It was nginx and percona that also had to be restarted.
link