Results 1 to 3 of 3

Thread: SSL wont' update after patch

  1. #1
    mulyadi is offline Member
    Join Date
    Jul 2013
    Location
    Bandung, Indonesia
    Posts
    10
    Rep Power
    2

    Default SSL wont' update after patch

    Hi,

    I read about heart bleed issue and i try patch as i read from
    https://www.zimbra.com/forums/announ...erability.html
    But after i patch i don't see any change.
    Here my OpenSSL version after i patch :

    root@mail:~# openssl version -a
    OpenSSL 1.0.1 14 Mar 2012
    built on: Tue Jul 3 20:15:07 UTC 2012
    platform: debian-amd64
    options: bn(64,64) rc4(16x,int) des(idx,cisc,16,int) blowfish(idx)
    compiler: cc -fPIC -DOPENSSL_PIC -DZLIB -DOPENSSL_THREADS -D_REENTRANT -DDSO_DLFCN -DHAVE_DLFCN_H -m64 -DL_ENDIAN -DTERMIO -g -O2 -fstack-protector --param=ssp-buffer-size=4 -Wformat -Wformat-security -Werror=format-security -D_FORTIFY_SOURCE=2 -Wl,-Bsymbolic-functions -Wl,-z,relro -Wa,--noexecstack -Wall -DOPENSSL_NO_TLS1_2_CLIENT -DOPENSSL_MAX_TLS1_2_CIPHER_LENGTH=50 -DMD32_REG_T=int -DOPENSSL_IA32_SSE2 -DOPENSSL_BN_ASM_MONT -DOPENSSL_BN_ASM_MONT5 -DOPENSSL_BN_ASM_GF2m -DSHA1_ASM -DSHA256_ASM -DSHA512_ASM -DMD5_ASM -DAES_ASM -DVPAES_ASM -DBSAES_ASM -DWHIRLPOOL_ASM -DGHASH_ASM
    OPENSSLDIR: "/usr/lib/ssl"

    I Use Zimbra zcs-8.0.6_GA_5922.UBUNTU12_64.

    if anyone has ever experienced the same thing?


    Regards,

    Mulyadi
    Last edited by mulyadi; 04-13-2014 at 09:19 PM. Reason: i forgot some thing

  2. #2
    phoenix is online now Zimbra Consultant & Moderator
    Join Date
    Sep 2005
    Location
    Vannes, France
    Posts
    23,566
    Rep Power
    57

    Default

    The version of openssl that you are displaying is the one used by Debian, ZCS uses it's own version.
    Regards


    Bill


    Acompli: A new adventure for Co-Founder KevinH.

  3. #3
    mulyadi is offline Member
    Join Date
    Jul 2013
    Location
    Bandung, Indonesia
    Posts
    10
    Rep Power
    2

    Default

    Quote Originally Posted by phoenix View Post
    The version of openssl that you are displaying is the one used by Debian, ZCS uses it's own version.
    Dear Phoenix,

    Thank you for your reply.

    I 'm sorry for this.
    I think the indicator affected heart bleed is vulnerable by version OpenSSL 1.0.1 - 1.0.1.f

    but i've read again about this issue.
    i check again this system with command :

    # strings libssl.so | grep dtls1_heartbeat

    to see if my system was affected by a bug.

    And after i patch i see this system is normal but there were several other mail servers are affected.

    once again thank you for your attention.

    Regards,

    Mulyadi

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. OpenSSL Patch Update for ZCS 8.0.3 Only
    By thom in forum Announcements
    Replies: 0
    Last Post: 04-09-2014, 09:09 AM
  2. [SOLVED] Mailbox quota wont update
    By bryandobson in forum Administrators
    Replies: 6
    Last Post: 03-01-2012, 01:01 AM
  3. Update or patch the server or not?
    By Labsy in forum Administrators
    Replies: 3
    Last Post: 04-01-2011, 01:11 PM
  4. OpenLDAP patch ITS5728.patch
    By Prolitheus in forum Developers
    Replies: 0
    Last Post: 12-22-2008, 02:01 AM
  5. [SOLVED] After update zu 5.0.9 normal HTTPD wont start
    By pc-nico in forum Administrators
    Replies: 1
    Last Post: 09-02-2008, 12:05 AM

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •