当我去跑步的时候:
root@vps [~]# yum update -y openssl
我得到:
Loaded plugins: fastestmirror
Loading mirror speeds from cached hostfile
* base: mirror.beyondhosting.net
* extras: centos.mirror.nac.net
* updates: centos.netnitco.net
Setting up Update Process
No Packages marked for Update
如果我运行:
root@vps [~]# yum info openssl
我得到了这个,这不是最新版本的 OpenSSL,并且容易受到 heartbleed 攻击:
Loaded plugins: fastestmirror
Loading mirror speeds from cached hostfile
* base: mirror.beyondhosting.net
* extras: centos.mirror.nac.net
* updates: centos.netnitco.net
Installed Packages
Name : openssl
Arch : x86_64
Version : 1.0.1e
Release : 16.el6_5.7
Size : 4.0 M
Repo : installed
From repo : updates
Summary : A general purpose cryptography library with TLS implementation
URL : http://www.openssl.org/
License : OpenSSL
Description : The OpenSSL toolkit provides support for secure communications
: between machines. OpenSSL includes a certificate management tool
: and shared libraries which provide various cryptographic
: algorithms and protocols.
Available Packages
Name : openssl
Arch : i686
Version : 1.0.1e
Release : 16.el6_5.7
Size : 1.5 M
Repo : updates
Summary : A general purpose cryptography library with TLS implementation
URL : http://www.openssl.org/
License : OpenSSL
Description : The OpenSSL toolkit provides support for secure communications
: between machines. OpenSSL includes a certificate management tool
: and shared libraries which provide various cryptographic
: algorithms and protocols.
或者由于某种原因,1.0.1e 版本不易受到 heartbleed 攻击?
答案1
16.el6_5.7是修复了该问题的补丁版本(请参阅包裹信息在 Scientific Linux 网站上)。