On 19th March 2015 new vulnerabilities are reported in OpenSSL which can be exploited in a DOS attack against the server. To overcome such type of security issues, update Your OpenSSL with given below instructions.
- Open your terminal and execute given below command to know your openssl version [stextbox id=”grey”]openssl version[/stextbox]
- If it shows [stextbox id=”alert”]OpenSSL 1.0.1f 6 Jan 2014[/stextbox] then you have to update your openssl version from 1.0.1f to 1.0.1m.
- Execute given below commands to update your openssl version. [stextbox id=”grey”]curl https://www.openssl.org/source/openssl-1.0.1m.tar.gz | tar xz && cd openssl-1.0.1m && sudo ./config && sudo make && sudo make install[/stextbox]
- Now replace old openssl binary file by creating symlink from given below command. [stextbox id=”grey”]sudo ln -sf /usr/local/ssl/bin/openssl `which openssl`[/stextbox]
- After this again execute [stextbox id=”grey”]openssl version[/stextbox] if it shows version 1.0.1m then you have successfully updated your openssl version and protected your system or server from current openssl vulnerability.
