Pranaam to all _/\_
Today i am going to post about, how to patch heartbleed vulnerability in openssl package in ubuntu without upgrading it :)
ok so we need to follow these steps
Download an compile openssl stable package
command is
curl https://www.openssl.org/source/openssl-1.0.1g.tar.gz | sudo tar xz && cd openssl-1.0.1g && sudo ./config
now execute this command
sudo make
if you get an error with message "make: command not found", it means you dont have make command installed on your system
install it first by executing this command
sudo apt-get install make
again execute the command sudo make
if you gets an error regarding GCC
it means GCC compiler is not installed on your system and need to install it
execute this command to install GCC compiler
sudo apt-get install gcc
ok after installation of GCC , now again execute command sudo make
if everything goes fine now install the package by executing this command
sudo make install
after that rexecute this command
sudo ln -sf /usr/local/ssl/bin/openssl `which openssl`
and now check your openssl version by executing this command
openssl version
it will show you latest openssl package info
now upgrade this package too
sudo apt-get install --only-upgrade libssl1.0.0
after upgrade of this package, we need to find which services need to restart
execute this command to find all the services which are using vulnerable openssl service
you will get a list of services which we need to restart
like apache , postfix, proftpd (if any of these installed )
just restart them and
server is patched >:D<
with love from Team IndiShell <3
Thank you
and now check your openssl version by executing this command
openssl version
it will show you latest openssl package info
now upgrade this package too
sudo apt-get install --only-upgrade libssl1.0.0
after upgrade of this package, we need to find which services need to restart
execute this command to find all the services which are using vulnerable openssl service
sudo find /proc -maxdepth 2 -name maps -exec grep -HE '/libssl\.so.* \(deleted\)' {} \; | cut -d/ -f3 | sort -u | xargs --no-run-if-empty ps uwwp
you will get a list of services which we need to restart
like apache , postfix, proftpd (if any of these installed )
just restart them and
server is patched >:D<
with love from Team IndiShell <3
Thank you
-==[[Love to]]==--
zero Cool ,code breaker ica, root_devil, google_warrior,INX_r0ot,Darkwolf indishell,Baba ,Silent poison India,Magnum sniper,Atul Dwivedi,ethicalnoob Indishell,Local root indishell,Irfninja indishell,Reborn India,L0rd Crus4d3r,AR AR,Mannu, ViKi, Hardeep singh Bhuppi,Mohit, Ffe, Anju, RR Mam, Acchi bacchi(Jagriti) and DON
:)
:-)
:))
=))
:(
:-(
:((
:d
:-d
@-)
:p
:o
:>)
(o)
[-(
:-?
(p)
:-s
(m)
8-)
:-t
:-b
b-(
:-#
=p~
:-$
(b)
(f)
x-)
(k)
(h)
(c)
cheer
Awaysome Post Keep it up bhai ji :)
ReplyDelete