[Linux] Mises à jour openssl
Marc Grandmaire
mgm@::1
Jeu 10 Avr 00:06:45 CEST 2014
Le mercredi 9 avril 2014 22:06:28 Christophe Courtois a écrit :
> Salut à tous,
>
> Le 09/04/14 10:00, François DREYFÜRST a écrit :
> >> Cela ne touche pas que le service hhtp mais également openvpn,
ssh,
> >> postfix|exin|... etc
>
> Donc après la mise à jour autant redémarrer la machine pour être sûr
de
> ne rien oublier.
Y'a "checkrestart" qui est pratique pour essayer d'éviter ça (paquet
debian-goodies).
Je cite la manpage:
"The checkrestart program tries to determine if there are processes in
the system that need to be restarted after a system upgrade. This is
necessary since an upgrade will usually bring new system libraries and
running processes will be still using the old versions of the libraries. In
stable Debian GNU/Linux systems this is typically needed to eliminate a
system exposure to a vulnerability which might have been fixed by
upgrading a library which that process makes use of.
Consequently, checkrestart is sometimes used as an audit tool to find
outdated versions of libraries in use, particularly after security upgrades.
Administrators should not, however, rely on its output completely (see
BUGS below)."
-------------- section suivante --------------
Une pièce jointe HTML a été nettoyée...
URL: <https://strasbourg.linuxfr.org/pipermail/linux/attachments/20140410/fdbdd64b/attachment-0001.html>
Plus d'informations sur la liste de diffusion linux