Software :: How To Report Patched Php5-5.3.6/ext/openssl/xp_ssl.c
May 14, 2011
This may sound odd, but how does one report a patched file to a major dev team, like PHP? Sure, they have their bug report page, but the following bug hasn't even been reported. After a bit of googling, though, I found the solution.
As I learned from first hand experience, compiling php5-5.3.6, when ./configure --with-openssl, terminates like so code...
if one has openssl-1.0.0d installed. Apparently, OpenSSL dropped support for SSLv2 with said version, and php5-5.3.6 doesn't know what to do without it enabled.
Fortunately, the boys @ Debian figured it out & have patched xp_ssl.c previous to their latest php5-5.3.6-10.deb release, but how do you let the PHP devs know?
View 3 Replies
ADVERTISEMENT
Dec 1, 2010
I currently have Red Hat 5.4 installed and subscribed to red hat network for alert updates.The updates will be done by our administrator but I will like to check if the admin has done so on a weekly basis. Is there a command that generates a report or allows me to check if certain updates has been patched? I understand running a yum update will list all applicable patches. Should we just simply update all or only certain applications applicable to our organization environment?
View 2 Replies
View Related
May 3, 2010
I'd like to use PHP5.2x instead of PHP5.3x on my Ubuntu 10.04. There is a small bug in Drupal where tweaking Views causes an error which seems to be associated with php5.3.
So, how would I regress to using 5.2x on Ubuntu?
View 1 Replies
View Related
Dec 27, 2010
My laptop was not hibernating using default kernle and uswsusp.So I decided to try tuxonice from ubuntu ppa. Now hibernation and suspend is working beautifully on my laptop. But I have few doubts in my mind, since now I am using patched kernel from ppa will it affect the overall stability of system ? What if there is any kernel related update from ubuntu will I receive that update ? What if new ubuntu version is release, can I upgrade without breaking my whole system ?
View 2 Replies
View Related
Jun 12, 2010
if I have a kernel that does not automatically update because I installed it from a deb, will I be missing out on important security updates or the like? I installed the 2.6.34 kernel because I wanted trim support, but am very concerned that I will miss something important.
View 1 Replies
View Related
Sep 30, 2010
I just installed starcraft 2 using playonlinux and wine. I was able to launch it once it finished the updates. I proceeded to amp up the graphics to ultra on everything. I did that then it crashed. i now can not seem to open it. Not through wine or on the desktop.
View 1 Replies
View Related
Mar 11, 2011
I grabbed a pacthed version of tomboy from this in order to use tomboy Task manager addin created by the same developers I guess. Well I managed with the
Code:
./autogen.sh
and
Code:
./configure
scripts until I came up with a valid make file. I later ran
Code:
[Code]...
View 5 Replies
View Related
May 14, 2011
I've been trying to update my base RHEL 5.4 to a 5.4 + Security fixes. Is this possible or am I left to only upgrade from 5.4 up to the latest RHEL version?
Like, is there a way to update the packages in 5.4 (sshd, kernel, librairies...)but without upgrading to a different release?
View 5 Replies
View Related
Mar 8, 2011
I have scoured the web for every bit of information I can find regarding installing the ieee80211 patched driver for the realtek rtl8187, to use an Alfa AWUS036H for packet injection. Error after error after error, I have had no success, and all I can find is other people with the same setup having the same problems.
Assume I have installed Ubuntu 10.10 straight out the box, so no updates have yet been made. Is someone in the know willing to post some step by steps on how to download, install and patch the necessary driver and install necessary software, including precise info on how to blacklist or remove mac80211 version rtl8187.ko in order to replace it with the patched ieee80211 version?
I know there's a tutorial on here somewhere for installing rtl8187 in an older version of Ubuntu, and in that thread, the people with Ubuntu 10.10 all seem to be having the same problems.
View 2 Replies
View Related
May 27, 2010
I have been trying to compile a patched driver for use with my RTL8187L wireless device and get this error.
rm -f ieee80211/Module.symvers 2>/dev/null
rm -f ieee80211/Modules.symvers 2>/dev/null
make -C ieee80211 all
[code].....
View 3 Replies
View Related
Jan 13, 2011
it's possible to compile the 2.6.37 kernel patched with the autogroup patch on a Slackware 13.1 system running 2.6.33.4-smp with 2.6.33.4 headers? I just compiled and installed the 2.6.37-autogroup kernel from AUR on my ARCH setup and I like it especially when using firefox with lots of tabs open and other background apps also running. I did notice a speed and smothness difference in my ARCH testing setup with this kernel patch and I can get same results in 13.1??
View 1 Replies
View Related
May 14, 2010
I'm unable to compile ruby 1.9.X and I found out it was related to openssl, although it seems there's a patch available for ruby I don't know how to apply it so I was thinking on downgrading to openssl 0.9.8n
I'm using F13 btw, I'm still posting it here as openssl 1.0.0 was first introduced on F12, the other major distros are still using openssl 0.9.8k so there's no much information on the problem
View 2 Replies
View Related
Jul 27, 2011
I have a weird problem in which I try to use cryptodev in Openssl version 0.9.8g, but then if an error occurs or the system logs out, the version for Openssl rolls back to 0.9.8b.I have also tried reinstalling, but no dice. The version stays 0.9.8b. I am using Intel Tolapai with RedHat 5
View 1 Replies
View Related
Jan 14, 2011
I was upgrading openssl 0.7 to 0.9.81 in my redhat 9 server. I've followed the guideline from here: [url]
Now everything is messed up There's no libcrypto.so in /usr/local/ssl/lib directory. Only libcrypto.a. Neither in /usr/lib or /lib directory. I can't even run scp or wget to download rpm of openssl. Getting libcrypto.so error. I've use locate command to find libcrypto.so. There's none. I've run ./config, make, make test and make install command again in the openssl 0.9.81 source directory. But no luck. No libcrypto.so. This is a production server and the httpd went down.
View 4 Replies
View Related
Apr 1, 2010
I want to recompile Apache in order to be SNI supportive because I need to use ssl named based virtual host:
I referred to the following links:
[URL]
I installed the latest version of openssl which is now openssl-1.0.0 I ran the following commands:
./config enable-tlsext --prefix=/usr/local2 --openssldir=/usr/local2/openssl
make
make test
make install
then to recompile apache with new SNI support I ran the following:
./configure --enable-so --enable-ssl --enable-rewrite --enable-unique-id --with-ssl=/usr/local2/openssl
make
make install
After that when I start Apache: /usr/local/apache2/bin/apachectl -k start I get the following error:
SSLStrictSNIVHostCheck failed; OpenSSL is not built with support for TLS extensions and SNI indication. Refer to the documentation, and build a compatible version of OpenSSL.
View 11 Replies
View Related
Jan 8, 2011
I am trying to get openssl to verify a certificate. I will walk you through what I have done so far.
1. openssl genrsa -des3 -out connect.mydomain.com.key 2048
2. openssl req -new -key connect.mydomain.com.key -out connect.mydomain.com.csr
3. Bought an SSL from GoDaddy.
4. Submitted my CSR
5. Downloaded sf_bundle.crt (CA File I presume)
6. Downloaded connect.mydomain.com.crt
Now I can do the following: [root@server tls]# openssl verify -CAfile sf_bundle.crt connect.mydomain.com.crt
connect.mydomain.com.crt: OK This is specifying the CAfile.
[Code]...
View 2 Replies
View Related
Aug 17, 2011
in order to share profiles between a Mahara and a Moodle installation I need to get OpenSSL working.
I've got OpenSSL installed on the server and followed this tutorial. However, I still get an error message saying that either OpenSSL or PHPs support for OpenSSL are missing: Could not generate a new SSL key. Are you sure that both openssl and the PHP module for openssl are installed on this machine?
What would be the next steps to actually set up the Apache server and PHP so they can use OpenSSL? (I've already specified the path to my caconfig.cnf file in Maharas config.php)
View 4 Replies
View Related
Aug 10, 2011
I am a new administrator and am running SLES 11 on a VM. I have openssl installed, but when I attempt to compile an add-on module to Nginx I get the following list of errors:
[Code]...
View 3 Replies
View Related
Oct 7, 2010
I've been googling around and have had a bit of a hard time trying to find help with this little issue. Managed to install CouchDB on the server at work after doing some fiddling due to not having spidermonkey availableAnyways, rt of this involved updating openssl.fter doing this however all hell broke loose.It seems a lot of programs needed the old version- I keep getting: error while loading shared libraries: libssl.so.0.9.8: cannot open shared object file: No such file or directory
I did a search:
>locate libssl.so.0.9.8
And it returned:
[code]...
View 9 Replies
View Related
Jul 14, 2010
I got an task assigned to me, i have to create new ssl key, csr & crt files using openssl. But the file name must be of this kind (*.aaa.xx.aa). When I tried the file name starting with * its not accepting the file name. But when I tried with the file name starting with . its getting generated.
View 1 Replies
View Related
Jan 18, 2011
I inherited a project that someone built in lampp, and I need create new SSL certs.
So I go to do so and it says that OpenSSL is not installed and to apt-get and install it.(Ubuntu by the way)
So before I did so, I wondered if it would cause any problems...since it was supposed to be part of the lampp stack.
View 3 Replies
View Related
Apr 27, 2010
I have problem in installing openvpn I get this error:
[Code]....
View 4 Replies
View Related
Aug 18, 2010
I want to use FIPS mode under linux. With openssl-0.9.8o, I typed "./config fipscanisterbuild" and then typed "make". The compile successful. Then I did a test about fips, below is my test code (main.cpp):
#include <iostream>
#include <openssl/ssl.h>
#include <openssl/fips.h>
int main(int argc, char *argv[])
{
[Code]....
View 2 Replies
View Related
Jul 18, 2009
Firefox 3.5 has a critical java script vulnerability as noted in the recent news. I had to manually update to 3.5.1 using the mozilla tarball because there's still no Firefox 3.5.1 in Fedora Updates or even Fedora Updates Testing repositories. Is this normal? I didn't want to resort to using the mozilla one because now I can't use flash (my system is 64 bit and mozilla only seems to offer a 32bit tar file of Firefox) and having two Firefoxs means dealing with the ProfileManager, separate bookmarks and so on.
I'm trying to find out if I'm just looking in the wrong place, I tried the normal mirrors for "updates" for Fedora 11 and then updates-testing and also the baseurl for "updates" to get rid of the mirror update delay. None of them seem to have 3.5.1 ?
View 3 Replies
View Related
May 3, 2016
Is it mandatory to reboot a public server after upgrading openssl? Or is it sufficient to restart the services?
View 2 Replies
View Related
Jan 19, 2010
I'm using Apache as a web server and mod_ssl to handle my certs. Everything was working fine on Fedora 11 running 0.9.8x of openssl until I updated to 12. Version 1.0.0beta4 of open ssl is full of bugs. It is basically incompatible with .net and php's implementation of SSL. Running wireshark actually shows it fails at handshake stages...
I'm not here to report the bugs relating to openssl but can somebody please explain why there is an unstable version of openssl in Fedora 12 as standard?
View 2 Replies
View Related
May 11, 2010
I'm getting a segv when trying to run CA.pl/.sh to create a rootCA:
Please enter the following 'extra' attributes to be sent with your certificate request.
A challenge password []:
An optional company name []:
unknown option -create_serial
usage: ca args
-verbose - Talk alot while doing things
-config file - A config file
-name arg - The particular CA definition to use
-gencrl - Generate a new CRL
-crldays days - Days is when the next CRL is due
-crlhours hours - Hours is when the next CRL is due
-startdate YYMMDDHHMMSSZ - certificate validity notBefore
-enddate YYMMDDHHMMSSZ - certificate validity notAfter (overrides -days)
-days arg - number of days to certify the certificate for
-md arg - md to use, one of md2, md5, sha or sha1
-policy arg - The CA 'policy' to support
-keyfile arg - private key file
-keyform arg - private key file format (PEM or ENGINE)
-key arg - key to decode the private key if it is encrypted
-cert file - The CA certificate
-in file - The input PEM encoded certificate request(s)
-out file - Where to put the output file(s)
-outdir dir - Where to put output certificates
-infiles .... - The last argument, requests to process
-spkac file - File contains DN and signed public key and challenge
-ss_cert file - File contains a self signed cert to sign
-preserveDN - Don't re-order the DN
-noemailDN - Don't add the EMAIL field into certificate' subject
-batch - Don't ask questions
-msie_hack - msie modifications to handle all those universal strings
-revoke file - Revoke a certificate (given in file)
-subj arg - Use arg instead of request's subject
-extensions .. - Extension section (override value in config file)
-extfile file - Configuration file with X509v3 extentions to add
-crlexts .. - CRL extension section (override value in config file)
-engine e - use engine e, possibly a hardware device.
-status serial - Shows certificate status given the serial number
-updatedb - Updates db for expired certificates
./CA.sh: line 197: 10495 Segmentation fault
$CA -create_serial -out ${CATOP}/$CACERT $CADAYS -batch -keyfile ${CATOP}/private/$CAKEY -selfsign -extensions v3_ca -infiles ${CATOP}/$CAREQ
I tried removing the -create_serial option and then it complains about the -selfsign option. Removed that too - but it just errors out, never creating my root ca cert. Happens with openssl 0.9.8m/1.0.0 on suse linux 9.
View 3 Replies
View Related
May 9, 2010
I saw, there is a new OpenSSL v 1.0.0 and I wanna ask how to install it. I have this server now Apache/2.2.14 (Ubuntu) PHP/5.2.10-2ubuntu6.4 with Suhosin-Patch mod_ssl/2.2.14 OpenSSL/0.9.8k
And I try to install by reading the Install file in the package but I still have 0.9.8k.
$ ./config
$ make
$ make test
$ make install
View 5 Replies
View Related
Jul 28, 2010
I'd like to upgrade libssl to 0.9.8l version on my Lucid-based server, because of CVE-2009-3555 - they say that 0.9.8l disables SSL renegotiation, fixing the security issue. But there is no 0.9.8l in Ubuntu repositories - only 0.9.8k-7 is available. how can I upgrade this library? BTW. it is really strange why such significant security fix is not available in Ubuntu repositories. why it is not available?
View 9 Replies
View Related
Sep 26, 2010
I asked on irc, and received a sad 'not unless the version in synaptics is with ssl'. Is it not possible to change this ? - or is the only way out to compile/build it yourself?
View 1 Replies
View Related
