OpenSSL 0.9.7a seems to be vulnerable (was: Re: LKM Trojan)

Michael A. Peters mpeters at
Wed Dec 1 12:20:20 UTC 2004

On 11/30/2004 06:21:08 PM, Alexander Dalloz wrote:

> Good question - next one ;) Seriously, from my observation such tools
> alerting based on version numbers (nessus is such a application too)
> make unexperienced users uncertain.

The proper thing (imho) to do is distribution specific tools that check  
the patchlevel of the package.

I use yum for that - yum update ;)

More information about the users mailing list