Journaling the Journey: Easy way to confirm that Centos is patched against Heartbleed

This post should have been posted earlier, but here it is anyway... If you run a Centos box you'll notice that packages are not updated as regular as other distros like Ubuntu. However since the Heartbleed vulnerability is pretty sick, the developers at Centos issued a patch. A simple yum update openssl should fix it. To confirm:

╭─james@darktech  ~ 
╰─$ for i in `seq 1 4`; do ssh root@tech-qa0$i "rpm -q --changelog openssl | grep CVE-2014-0160"; done                       255 ↵

- fix CVE-2014-0160 - information disclosure in TLS heartbeat extension
- fix CVE-2014-0160 - information disclosure in TLS heartbeat extension
- fix CVE-2014-0160 - information disclosure in TLS heartbeat extension
- fix CVE-2014-0160 - information disclosure in TLS heartbeat extension

About

I am an action-oriented digital nomad, technologist and micropreneur. I specialise in building SaaS products, driving IT strategies and managing complex IT projects. Throughout the years, I have founded a number of IT startups and companies alike.

I graduated with honors in Electrical & Electronics Engineering, and obtained a Masters degree in Business Administration with Henley Business School.

At present I do my best to balance a number of activities including spending time with family and a full-time job. I also engage in other part-time activities including teaching business & IT, and building IT startups with a number of entrepreneurs.

In my free time I love to ride my motorbike, play the bass guitar with my garage bands, or even, travel around the world.

For business inquiries, mentoring, presentations or just an introduction, drop me an email on info [at] jamesattard.com.

Journaling the Journey

Pages

Easy way to confirm that Centos is patched against Heartbleed

No comments: