openssh linked against old openssl
Michal Jaegermann
michal at harddata.com
Sat Jan 10 03:06:00 UTC 2015
On Fri, Jan 09, 2015 at 05:58:43PM -0800, Rick Stevens wrote:
> I just did a fedup of a Fedora 20 machine to Fedora 21. It wouldn't
> let me log in via the GUI (XFCE). Looking around, it appears a number
> of items are linked against an older version of openssl. For example,
> sshd, ssh-agent, yum and libvirtd all wanted libssl.so.7 (although after
> a reboot, libvirtd was happy).
>
> It appears that fedup installed openssl-1.0.1j-1.fc21.x86_64 (which
> provides libssl.so.10) and purges the older version that provided
> libssl.so.7. According to yum, the openssh I have installed (6.6.1p1-9.fc21)
> is the current one but it still has this need for the
> older openssl:
>
> [root at golem4 ~]# ldd /usr/sbin/sshd | grep ssl
> libssl.so.7 => /lib64/libssl.so.7 (0x00007ffbcc44d000)
>
> This breaks a LOT of stuff.
Wrong list as F21 was already released but anyway ...
Are you sure that you have correct binaries? With no complaints from
rpm -Vf /usr/sbin/sshd
Because on an installation which I upgraded from F19 to F21 I see this:
# ldd /usr/sbin/sshd | egrep 'crypto|ssl'
libcrypto.so.10 => /lib64/libcrypto.so.10 (0x00007f20cb5f5000)
libk5crypto.so.3 => /lib64/libk5crypto.so.3 (0x00007f20c9da8000)
libssl3.so => /lib64/libssl3.so (0x00007f20c8ef7000)
with /lib64/libssl3.so supplied by nss-3.17.3-2.fc21.x86_64.
openssh-server package shows "Build Date : Wed 03 Dec 2014 10:32:09 AM MST"
Michal
More information about the test
mailing list