The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

How to upgrade bind and openssl?

Discussion in 'Bind / DNS / Nameserver Issues' started by septiandwi, Feb 4, 2009.

  1. septiandwi

    septiandwi Registered

    Joined:
    Jan 28, 2009
    Messages:
    1
    Likes Received:
    0
    Trophy Points:
    1
    Hello,
    How to upgrade BIND on WHM/cPanel?
    How to upgrade openssl on WHM/cPanel?

    I found security issue:
    https://www.isc.org/node/389

    Thanks
     
  2. wizzy420

    wizzy420 Well-Known Member

    Joined:
    Nov 13, 2007
    Messages:
    125
    Likes Received:
    2
    Trophy Points:
    18
    If you have "Update Config" -> "Security Package Updates" set to "Automatic" you don't need to worry. And this is probably what you should have set.

    Otherwise you can go to "Update Server Software" which will do security updates.

    As a last resort, which probably isn't recommended as it ignores any other available security update, you can go to a command line as root and:

    yum update bind openssl
     
  3. AndyReed

    AndyReed Well-Known Member
    PartnerNOC

    Joined:
    May 29, 2004
    Messages:
    2,222
    Likes Received:
    3
    Trophy Points:
    38
    Location:
    Minneapolis, MN
    As of today, OpenSSL: v0.9.8j and OpenSSH: v5.1p1 are the latest releases. You'll have to compile them, manually.
     
  4. mctDarren

    mctDarren Well-Known Member

    Joined:
    Jan 6, 2004
    Messages:
    664
    Likes Received:
    2
    Trophy Points:
    18
    Location:
    New Jersey
    cPanel Access Level:
    Root Administrator
    Unless of course you are running a platform like Red Hat, which backports security patches, rather than updating with new release versions. Then you might not have to do anything at all.

    You're best bet is to be aware of your provider's practice and act accordingly. Check the particular security issue that you think might affect you with your Linux flavor's practice and be sure compiling from source direct from the author is the option you want. Once you start doing that, automatic updates fly out the window.
     
  5. wizzy420

    wizzy420 Well-Known Member

    Joined:
    Nov 13, 2007
    Messages:
    125
    Likes Received:
    2
    Trophy Points:
    18
    For someone asking this question this will probably, in the end, make them less secure than simply using their OS's patched, distributed versions.

    If they don't know how to update things now, what are the chances they will stay on top of keeping their manually compiled & installed versions up to date?

    Also cPanel is made to work with the vendors patches and updates.

    It would probably be much better for them to make sure Security Updates are set to automatic and be done with it.

    W
     
Loading...

Share This Page