[mythtv-users] the heartbleed openssl bug and mythtv
Andréas Kühne
andreas at kuhne.se
Wed Apr 9 19:39:32 UTC 2014
2014-04-09 21:33 GMT+02:00 Ian Evans <dheianevans at gmail.com>:
> On Wed, Apr 9, 2014 at 3:12 PM, <yan at seiner.com> wrote:
>
>> > Just a heads up that if you've made your mythbox accessible from the
>> > outside via ssh or mythweb you may need to make sure your system isn't
>> > affected by the recenlty discovered heartbleed security hole.
>> >
>> >
>> http://serverfault.com/questions/587329/heartbleed-what-is-it-and-what-are-options-to-mitigate-it
>> >
>> > I'm currently running mythbuntu 12.04. Any tips to get patched? Should I
>> > hope to 13.04 immediately?
>>
>> apt-get update && apt-get upgrade
>>
>> if you don't have automatic security updates enabled (which you should).
>>
>> Mine updated sometime between the 4th and today.
>>
>> If you want to dist-upgrade wait until 14.04 is out in a few more days.
>>
>
> I did that earlier today and it's still OpenSSL 1.0.1 14 Mar 2012
>
> I do use TLS for some email alerts for the box.
>
> _______________________________________________
> mythtv-users mailing list
> mythtv-users at mythtv.org
> http://www.mythtv.org/mailman/listinfo/mythtv-users
> http://wiki.mythtv.org/Mailing_List_etiquette
> MythTV Forums: https://forum.mythtv.org
>
>
I just upgraded mine. Try running: openssl version -a and see so that the
build version is apr 7 2014. That's whats important.
Regards,
Andréas
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.mythtv.org/pipermail/mythtv-users/attachments/20140409/ecec45c9/attachment.html>
More information about the mythtv-users
mailing list