[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: SSL problems in woody (slapper)

On Fri, Sep 20, 2002 at 04:03:32PM +0200, Johann Spies wrote:
> On Fri, Sep 20, 2002 at 09:18:44AM +0200, Bjarne Østby wrote:
> > Reading on the list about the slapper worm I thought I should check what 
> > my servers return when tested with the openssl-sslv2-master script (http://cert.uni-stuttgart.de/advisories/openssl-sslv2-master.php).
> > 
> > (apache was restarted after upgrade of ssl)
> >   
> >   /home/bjarne# ./ssl-test xxx.xxx.xxx.31
> >   xxx.xxx.xxx.31 443 PATCHED: detects small overflow, but crashes (0.9.6e)
> 
> The output I get is constantly:
> 
> xxx.xxx.xxx.xxx.31 443 UNDECIDED: initial connection failed
> 
> Is that normal?

I get it if I forget to turn off my firewall or target a closed port.  Have
you installed HTTPS support for apache (and use it)?

I have webservers without HTTPS and they return UNDECIDED.

> 
> Johann
> -- 
> Johann Spies          Telefoon: 021-808 4036
> Informasietegnologie, Universiteit van Stellenbosch
> 
>      "But my God shall supply all your need according to his
>       riches in glory by Christ Jesus."     Philippians 4:19
> 
> 
> -- 
> To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
> 

-- 
Bjarne Østby
A novice on a steep learning curve.
Reply to: