On 8 April 2014 12:08, Steven Tardy sjt5atra@gmail.com wrote:
On Tue, Apr 8, 2014 at 2:56 AM, Keith Keller < kkeller@wombat.san-francisco.ca.us> wrote:
On 2014-04-08, Karanbir Singh kbsingh@centos.org wrote:
Earlier in the day today, we were made aware of a serious issue in openssl as shipped in CentOS-6.5 ( including updates issued since CentOS-6.5 was released ); This issue is addressed in detail at http://heartbleed.com/
is there an easy way to know which services need to be kicked?
rpm -q --whatrequires openssl
A slightly cleaner way:
lsof -n | grep ssl | grep DEL
That should show any processes that are using the old deleted library for you to restart...
Tomcat, apache httpd, postfix, postgresl, mysql... best just to restart any network facing application that has SSL enabled ;)