Weblog entry #23 for dkg
See all weblog entries made by dkg.
#23
You should restart apache2 after DSA-1379 (libssl)
Posted by dkg on Wed 3 Oct 2007 at 16:14
The recently announced patch for openssl does a good thing: it looks for services known to use libssl and offers to restart them for you.
However, it doesn't seem to notice apache2, which relies heavily on libssl when mod_ssl is enabled. You can check to see what services still use the old libraries (as discussed earlier in my weblog here). If you see apache2 among that list, you should almost certainly do:
/etc/init.d/apache2 restartAlternately, if you already know that you're using mod_ssl, you'll have an opportunity to add apache2 to the list of services to be restarted during the upgrade of libssl.
Many thanks to the debian security team for publishing this fix and making it so straightforward to restart most of the affected services. Your work is much appreciated!
Comments on this Entry
Posted by Anonymous (82.29.xx.xx) on Wed 3 Oct 2007 at 20:05
i noticed this too, after apt-get upgrade it did offer me the choice to enter which services to restart, but to be sure i /etc/init.d/apache2 restart :)
thx for tip.
sno
thx for tip.
sno
[ Parent | Reply to this comment ]