How to Patch Your Server for the Heartbleed Bug

Yes you! Patch your vulnerable server running SSL/https and stop letting the bad guys access my supposedly  protected data.  And if you don’t know what I’m talking about, you can read all about it here: http://heartbleed.com/

Enough for today’s rant.

I have to admit, I’m just a guilty.

I do have a few servers running https, and haven’t applied patches recently. One server running the Ubuntu 10.04 distro already contained the update and the 12.04 didn’t.  To run a quick test,  you can enter your server’s address here: http://filippo.io/Heartbleed/

A third server running 12.04 (installed a few weeks ago) was updated and installed a new OpenSSL package.

Confirmed fixes in Ubuntu LTS 10.04 and LTS 12.04

apt-get update

apt-get upgrade

Unconfirmed in Centos 6.5

yum update

 

Advertisements