|
|
 |
 |
 |
 |
 |
 Home : °í°´Áö¿ø¼¾ÅÍ > °øÁö»çÇ× |
|
| Á¦¸ñ |
 |
 [±ä±Þ/Áß¿ä] openssl Ãë¾àÁ¡ ¹× ¾÷µ¥ÀÌÆ® ¾È³» (ÇÏÆ®ºí¸®µå) |
|
2014.04.16 |
|
3,216 |
|
|
¾È³çÇϼ¼¿ä ÇѼ¹öÀÔ´Ï´Ù.
openssl Ãë¾àÁ¡ÀÌ ¹ßÇ¥°¡ µÇ¾ú½À´Ï´Ù ÀÌ¿¡ ¾È³»ÇØ µå¸®´Ï ÇØ´çµÇ½Ã´Â °í°´ºÐµéÀº ¹Ýµå½Ã ¾÷µ¥ÀÌÆ®¸¦
ÁøÇàÇØ Áֽñ⠹ٶø´Ï´Ù.
¡Ø Ãë¾àÁ¡ÀÌ ¹ß°ßµÈ ¹öÀü : OpenSSL 1.0.1 ~ 1.0.1f ¹× OpenSSL 1.0.2-beta, 1.0.2-beta1
¡Ø Ãë¾àÁ¡ÀÌ ¾ø´Â ¹öÀü : OpenSSL 1.0.0 ´ë ¹öÀü ¹× OpenSSL 0.9.x ´ë ¹öÀü ( CentOS6 ¹öÁ¯ )
¡Ø ·¹µåÇò °è¿ ¹öÁ¯È®Àιæ¹ý
# cat /etc/redhat-release == CentOS ¹öÁ¯È®ÀÎ
# rpm -qa | grep openssl == OpenSSL ¹öÁ¯È®ÀÎ
- ÀÌ Ãë¾àÁ¡Àº ÇÏÆ®ºí¸®µå(HeartBleed)·Î ¸Á¸íµÇ¾úÀ¸¸ç ¼³°è¿À·ù·Î ÀÎÇÏ¿©
¾ÏÈ£ÈÇؼ Àü¼ÛµÈ https:// ¸¦ ÀÌ¿ëÇÑ URL À» ÅëÇØ Áß¿äÁ¤º¸°¡ ³ëÃâµÉ¼öÀÖ½À´Ï´Ù.
ÇØ´ç Ãë¾àÁ¡À» ÇØ°áÇϱâ À§Çؼ´Â OpenSSL °ø½Ä ȨÆäÀÌÁö(http://www.openssl.org) ¿¡ Á¢¼ÓÇÏ¿©
4¿ù7ÀÏ¿¡ ¹èÆ÷µÈ Openssl 1.0.1g ¹öÁ¯À¸·Î ¾÷µ¥ÀÌÆ®¸¦ ÇؾßÇÕ´Ï´Ù.
¡Ø ¾÷µ¥ÀÌÆ®°¡ ¾î·Á¿î °æ¿ì ¡®-DOPENSSL_NO_HEARTBEATS¡¯ ¿É¼Ç ¼³Á¤ ÈÄ ÀçÄÄÆÄÀÏÇÏ¿© heartbeat ºñÈ°¼ºÈ
1.0.1g °¡ ¾Æ´Ï´õ¶óµµ ¸®´ª½º ¹öÁ¯¿¡ µû¶ó ÇØ´ç ³»¿ë¸¸ ¾÷µ¥ÀÌÆ® µÇ´Â °æ¿ìµµ Àֱ⠶§¹®¿¡
openssl version -a
¸í·ÉÀ¸·Î ¹öÁ¯¹× ³¯Â¥±îÁö È®ÀÎÇؼ 2014³â 4¿ù 8ÀÏ ÀÌÈĶó¸é ÇØ°áµÈ ¹öÁ¯À̱⠶§¹®¿¡ ¾÷µ¥ÀÌÆ®¸¦ ÇÏÁö ¾Ê¾Æµµ µË´Ï´Ù
·¹µåÇò °è¿
# yum update openssl
¿ìºÐÅõ °è¿
$sudo apt-get -f upgrade openssl
|
|
 |
|
 |
|
|
)
