[Linux] Mises à jour openssl

Marc Grandmaire mgm@::1
Jeu 10 Avr 00:06:45 CEST 2014


Le mercredi 9 avril 2014 22:06:28 Christophe Courtois a écrit :
> Salut à tous,
> 
> Le 09/04/14 10:00, François DREYFÜRST a écrit :
> >> Cela ne touche pas que le service hhtp mais également openvpn, 
ssh,
> >> postfix|exin|... etc
> 
> Donc après la mise à jour autant redémarrer la machine pour être sûr 
de
> ne rien oublier.

Y'a "checkrestart" qui est pratique pour essayer d'éviter ça (paquet 
debian-goodies).
Je cite la manpage:
"The  checkrestart program tries to determine if there are processes in 
the system that need to be restarted after a system upgrade. This is 
necessary since an upgrade will usually bring new system libraries and 
running processes will be still using the old versions of the libraries. In 
stable Debian GNU/Linux systems this is typically needed to eliminate a 
system exposure to a vulnerability which might have been fixed by 
upgrading a library which that process makes use of.
Consequently, checkrestart is sometimes used as an audit tool to find 
outdated versions of libraries in use, particularly after security upgrades. 
Administrators should not, however, rely on its output completely (see 
BUGS below)."


-------------- section suivante --------------
Une pièce jointe HTML a été nettoyée...
URL: <https://strasbourg.linuxfr.org/pipermail/linux/attachments/20140410/fdbdd64b/attachment-0001.html>


Plus d'informations sur la liste de diffusion linux