hosted by liquidweb


Go Back   Web Hosting Talk : Web Hosting Main Forums : Hosting Security and Technology : openssl + openssh
Reply

Hosting Security and Technology Configuring and optimizing web hosting servers and operating systems, developing administration scripts, building servers, protecting against hackers, and general security (SSL certificates, etc.)
Forum Jump

openssl + openssh

Reply Post New Thread In Hosting Security and Technology Subscription
 
Send news tip View All Posts Thread Tools Search this Thread Display Modes
  #1  
Old 01-03-2003, 07:07 PM
aquos aquos is offline
Junior Guru Wannabe
  
Join Date: Jun 2002
Posts: 80
Question

openssl + openssh

Hello all,

I installed openssl version 0.9.7 over 0.9.6 and then when I tried to install/update openssh (./configure) I've got this error:
Quote:
.
.
.
checking OpenSSL header version... 90700f (OpenSSL 0.9.7 31 Dec 2002)
checking OpenSSL library version... 90602f (OpenSSL 0.9.6b [engine] 9 Jul 2001)
checking whether OpenSSL's headers match the library... no
configure error: Your OpenSSL headers do not match your library
If you know how to overcome this problem, please advise.
Thank you so much.

-A

Reply With Quote


Sponsored Links
  #2  
Old 01-04-2003, 12:06 AM
Mdot Mdot is offline
Web Hosting Master
  
Join Date: Feb 2002
Posts: 981
do this (probably unsafe for newbie to do so):

rpm -e --nodeps `rpm -qa|grep openssl`
install openssl (./config --prefix=/usr && make && make install)
then install openssh (useradd sshd && ./configure --prefix=/usr --sysconfdir=/etc/ssh && make && make install)
then restart sshd, but open telnet before you do so, so you make sure if sshd won't start you still can connect to the server and fix sshd.

good luck

__________________
Powered by AMD & FreeBSD.
"Documentation is like sex:
when it is good, it is very, very good;
and when it is bad, it is better than nothing."

Reply With Quote
  #3  
Old 01-04-2003, 03:52 AM
i am a i am a is offline
Web Hosting Guru
  
Join Date: Nov 2000
Location: Vancouver, BC
Posts: 283
are you on a redhat 7.x server? if so and the build of 0.9.6b is 28 that should be secure. so you may not want to go through the hassle of updating everything, but ya, be weary of the ol --nodeps....

Reply With Quote
Sponsored Links
  #4  
Old 01-04-2003, 04:47 AM
silversurfer silversurfer is offline
Web Hosting Master
  
Join Date: Sep 2002
Posts: 677
I believe 0.9.6g has some important bugfixes

Reply With Quote
  #5  
Old 01-05-2003, 01:54 AM
aquos aquos is offline
Junior Guru Wannabe
  
Join Date: Jun 2002
Posts: 80
I have already upgraded it. What can I do now?

Miha, did you do that before?

Reply With Quote
  #6  
Old 01-05-2003, 02:25 AM
silversurfer silversurfer is offline
Web Hosting Master
  
Join Date: Sep 2002
Posts: 677
A bit out of topic. But somewhat related, I wanted to install Curl 7.10.2 and the latest openssl. After installing Openssl, I get an error when I try to install the latest Curl. Anyone know what am I missing?

The error goes something like UI_Openssl not found.

Reply With Quote
  #7  
Old 01-05-2003, 11:44 AM
Mdot Mdot is offline
Web Hosting Master
  
Join Date: Feb 2002
Posts: 981
Quote:
Originally posted by aquos
I have already upgraded it. What can I do now?

Miha, did you do that before?
of course I have done it before. Follow the steps I described and you won't have any problems. Don't forget to open telnet in case openssh won't start. The steps are simple:

1) Delete old openssl(-devel)
2) Get new openssl and install it
3) Get new openssh and install it (suggested prefix is /usr; suggested sysconfdir is /etc/ssh)
4) killall -HUP sshd
5) Close telnet back if everything is fine

that's all.

__________________
Powered by AMD & FreeBSD.
"Documentation is like sex:
when it is good, it is very, very good;
and when it is bad, it is better than nothing."

Reply With Quote
  #8  
Old 01-05-2003, 11:47 AM
Mdot Mdot is offline
Web Hosting Master
  
Join Date: Feb 2002
Posts: 981
also once you have done what I described you will need to compile all software that is using openssl's shared libs.
known server software recommended to recompile -
* BIND
* Curl
* Sendmail (or other MTA)
and basically that's it.

Miha.

__________________
Powered by AMD & FreeBSD.
"Documentation is like sex:
when it is good, it is very, very good;
and when it is bad, it is better than nothing."

Reply With Quote
Reply

Related posts from TheWhir.com
Title Type Date Posted


« Previous Thread | Next Thread »
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode
Postbit Selector

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Forum Jump
Login:
Log in with your username and password
Username:
Password:



Forgot Password?
Advertisement:
Web Hosting News:

cPanel Addresses User Concerns of Transfer and Backup Restore System Security

US Attorney says Government Should Have Warrants to Search Email

8kMiles Acquires Cloud Security Firm FuGen Solutions for $7.5 Million

Name.com Resets Customer Passwords After Security Breach

Outbound Spam Causing Sleepless Nights?

Malwarebytes Launches Data Scan-and-Backup Service

Commtouch Report: Spam, Malware Continues to Increase in Q1 2013

Researchers Urge System Admins to Check for New Apache Web Server Backdoor Malware

APWG Study Finds Phishers Increasingly Target Shared Virtual Servers

Man Arrested in Connection to Spamhaus DDoS Attacks



 

Learn more about advertising opportunities across the iNET Interactive Network.

LiquidWeb
X

Welcome to WebHostingTalk.com

Create your username to jump into the discussion!

WebHostingTalk.com is the largest, most influentual web hosting community on the Internet. Join us by filling in the form below.


(4 digit year)

Already a member?