Friday, April 18, 2014

Heartbleed secure & MySQL

Well a lot of concern, and rightfully so, has been made about the heartbleed bug recently.

I do not think I should try to add much more than those that I consider experts have already mentioned. If you have not reviewed the following posts you should.
It comes down to a couple of different aspects.
  • Update and secure your OS first. 
    • IF you use SSL with MySQL then 
      • Stop MySQL
      • Create new certs for your connections. 
        • That should include new expire dates and etc.
      •   Start MySQL  
Patching your OpenSSL is pretty straight forward.  You need to update to openssl-1.0.1e-16+
It is very likely that your code repositories will have this update, at least that is what I have seen so far.

# yum list openssl   resulted in 1.0.1e-16.el6_5.7

 Via Fedora 20 for example

# rpm -q openssl

#yum update openssl

Installed  1:1.0.1e-37.fc20.1

So the steps are easy to follow, it is up to you to ensure your system is secure.

No comments:

Post a Comment