Journaling the Journey: Easy way to confirm that Centos is patched against Heartbleed

This post should have been posted earlier, but here it is anyway... If you run a Centos box you'll notice that packages are not updated as regular as other distros like Ubuntu. However since the Heartbleed vulnerability is pretty sick, the developers at Centos issued a patch. A simple yum update openssl should fix it. To confirm:

╭─james@darktech  ~ 
╰─$ for i in `seq 1 4`; do ssh root@tech-qa0$i "rpm -q --changelog openssl | grep CVE-2014-0160"; done                       255 ↵

- fix CVE-2014-0160 - information disclosure in TLS heartbeat extension
- fix CVE-2014-0160 - information disclosure in TLS heartbeat extension
- fix CVE-2014-0160 - information disclosure in TLS heartbeat extension
- fix CVE-2014-0160 - information disclosure in TLS heartbeat extension

About

I am an action-oriented digital nomad, technologist and micropreneur. I specialise in building SaaS products, driving IT strategies and managing complex IT projects with COSTANSIN.

I graduated with honours in Electrical & Electronics Engineering, and obtained a Masters degree in Business Administration with Henley business school.

In my free time I love to ride my motorbike, play the bass guitar with my garage bands, or even, travel around the world.

For business enquiries, mentoring, presentations or just an introduction, drop me an email on info [at] jamesattard.com.

Journaling the Journey

Pages

Easy way to confirm that Centos is patched against Heartbleed

No comments: