On Thu, 29 Sep 2005, cmulloy at iol.ie wrote:
> Hi there I was wondering if anyone can help me.
>> Can anyone think of any more security configuration issues or
> vulnerabilities in the following?
>> OpenSSL version 0.9.5 and Mod_SSL 2.6.6 running on Redhat
Wow. That must be RedHat historical edition.
> I personally think it could be one of the following issues, but again there
> could be more...
What like:
http://www.kb.cert.org/vuls/id/258555
or: http://www.kb.cert.org/vuls/id/935264
or any of the vulnerabilities listed:
http://www.kb.cert.org/vuls/byid?searchview
many of which will be remotely exploitable if you have SSL enabled on
a public service.
You mean like that?
regards,
--
Paul Jakma paul at clubi.iepaul at jakma.org Key ID: 64A2FF6A
Fortune:
Of what you see in books, believe 75%. Of newspapers, believe 50%. And of
TV news, believe 25% -- make that 5% if the anchorman wears a blazer.
Maintained by the ILUG website team. The aim of Linux.ie is to
support and help commercial and private users of Linux in Ireland. You can
display ILUG news in your own webpages, read backend
information to find out how. Networking services kindly provided by HEAnet, server kindly donated by
Dell. Linux is a trademark of Linus Torvalds,
used with permission. No penguins were harmed in the production or maintenance
of this highly praised website. Looking for the
Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!
