[Triumf-linux-managers] Security update for glibc on Enterprise Linux
Andrew Daviel
advax at triumf.ca
Tue Jan 27 20:53:16 PST 2015
Further to my last message, it appears unnecessary to explicitly restart
any servers.
The RPM install of glibc will restart init and the SSH server using
/usr/sbin/glibc_post_upgrade*, while
dynamically-linked programs should automatically use the new library.
In any case, quote:
"Qualys says it has tested a number of other applications and servers
that make use of the affected functions and has determined that they
are not vulnerable, including apache, cups, dovecot, gnupg, isc-dhcp,
lighttpd, mariadb/mysql, nfs-utils, nginx, nodejs, openldap, openssh,
postfix, proftpd, pure-ftpd, rsyslog, samba, sendmail, sysklogd,
syslog-ng, tcp_wrappers, vsftpd, and xinetd."
per
http://www.theregister.co.uk/2015/01/27/glibc_ghost_vulnerability/
Any discussion should be directed to triumf-linux-users at lists.triumf.ca
--
Andrew Daviel, TRIUMF, Canada
Tel. +1 (604) 222-7376 (Pacific Time)
Network Security Manager
More information about the Triumf-linux-managers
mailing list