Pages

[xerox]

Hay,

How can i fix the Openssl leak ?
Should i reinstall openssl with the installer ? (OpenSSL, Binaries)
I have no idee, can one help me ?

EDIT:
I try to replace the files:

bin\libeay32.dll
bin\ssleay32.dll
bin\openssl.exe

On Apache Monitor stand 1.0.1f, but i copy the files from the 1.0.1g that i local installed

[Gregg]

The Apache monitor will tell you what ever was the version of apache and everything else at the time you installed the service so it's not a perfect indicator. If you got your update package from here there is instructions in the readme.1st.txt file.

  Update Apache 2.4.9 to OpenSSL 1.0.1g
  ------------------
    Simply replace your existing files with the ones in this package
      Remember to make a backup of the original files before replacing.

    /Apache24/bin/abs.exe
    /Apache24/bin/apr_crypto_openssl-1.dll
    /Apache24/bin/openssl.exe
    /Apache24/bin/libeay32.dll
    /Apache24/bin/ssleay32.dll

    /Apache24/conf/openssl.cnf
 
    /Apache24/modules/mod_ssl.so



  Upgrade Apache 2.2.27 to OpenSSL 1.0.1g
  ------------------
    Simply replace your existing files with the ones in this package
      Remember to make a backup of the original files before replacing.

    /Apache22/bin/abs.exe
    /Apache22/bin/openssl.exe
    /Apache22/bin/libeay32.dll
    /Apache22/bin/ssleay32.dll

    /Apache22/conf/openssl.cfg
 
    /Apache22/modules/mod_ssl.so

If you set ServerTokens to full, you can look in phpinfo() under _SERVER["SERVER_SOFTWARE"].

[xerox]

Thank you !

I didt see that is a Update her available.