如何在 CentOS 6.5 上升级 OpenSSL 以防止心脏出血?

如何在 CentOS 6.5 上升级 OpenSSL 以防止心脏出血?

当我去跑步的时候:

root@vps [~]# yum update -y openssl

我得到:

Loaded plugins: fastestmirror
Loading mirror speeds from cached hostfile
 * base: mirror.beyondhosting.net
 * extras: centos.mirror.nac.net
 * updates: centos.netnitco.net
Setting up Update Process
No Packages marked for Update

如果我运行:

root@vps [~]# yum info openssl

我得到了这个,这不是最新版本的 OpenSSL,并且容易受到 heartbleed 攻击:

Loaded plugins: fastestmirror
Loading mirror speeds from cached hostfile
 * base: mirror.beyondhosting.net
 * extras: centos.mirror.nac.net
 * updates: centos.netnitco.net
Installed Packages
Name        : openssl
Arch        : x86_64
Version     : 1.0.1e
Release     : 16.el6_5.7
Size        : 4.0 M
Repo        : installed
From repo   : updates
Summary     : A general purpose cryptography library with TLS implementation
URL         : http://www.openssl.org/
License     : OpenSSL
Description : The OpenSSL toolkit provides support for secure communications
            : between machines. OpenSSL includes a certificate management tool
            : and shared libraries which provide various cryptographic
            : algorithms and protocols.

Available Packages
Name        : openssl
Arch        : i686
Version     : 1.0.1e
Release     : 16.el6_5.7
Size        : 1.5 M
Repo        : updates
Summary     : A general purpose cryptography library with TLS implementation
URL         : http://www.openssl.org/
License     : OpenSSL
Description : The OpenSSL toolkit provides support for secure communications
            : between machines. OpenSSL includes a certificate management tool
            : and shared libraries which provide various cryptographic
            : algorithms and protocols.

或者由于某种原因,1.0.1e 版本不易受到 heartbleed 攻击?

答案1

16.el6_5.7是修复了该问题的补丁版本(请参阅包裹信息在 Scientific Linux 网站上)。

相关内容