Hi All :)
I need to check and possibly update openssl on my fleet of servers. I would
like to avoid reboot if possible. I think that I can:
- update openssl version with yum
- check all daemon processes which are constantly running in the os, for
example for sshd something like
ldd `which sshd` | awk '/\// { print $3 }' | grep crypto | xargs strings
| grep -i openssl
to verify if the old openssl version is still used
- if it is still used (I think that without a process restart the old
version will be used) I will perform restart of the process
Can this kind of check be done in some other way?
BR,
Rafal.