On Fri, Jun 20, 2014 at 6:47 AM, Tora Tora Tora tor@allthatnet.com wrote:
Regretfully, I have to shutdown my two middle relays (not too big, you won't even notice it :-D), since I am unable to resolve issues with the latest OpenSSL bug.
I was able to find upgraded packages for Centos and Fedora that are supposed to address CVE-2014-0224 vulnerability (the change log claims so). However, the Tripwire )SSL_CCS_InjectTest and Qualys onlien tests both disagree.
If someone can suggest a resolution that works, I might be able to keep them running, otherwise I see no point in running vulnerable relays until I figure things out.
Did you restart all applications that are using openssl? If not, they continue to use the old librariers. Best way is to just do a complete restart..