Login or Register to Ask a Question and Join Our Community


Security Advisories (RSS)

Ubuntu: openssl-blacklist update

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Security Advisories (RSS) Ubuntu: openssl-blacklist update
# 1  
Old 05-21-2008
Ubuntu: openssl-blacklist update
LinuxSecurity.com: USN-612-3 addressed a weakness in OpenSSL certificate and key generation in OpenVPN by introducing openssl-blacklist to aid in detecting vulnerable private keys. This update enhances the openssl-vulnkey tool to check X.509 certificates as well, and provides the corresponding update for Ubuntu 6.06. While the OpenSSL in Ubuntu 6.06 was not vulnerable, openssl-blacklist is now provided for Ubuntu 6.06 for checking certificates and keys that may have been imported on these systems.

More...
Login or Register to Ask a Question

Previous Thread | Next Thread

1 More Discussions You Might Find Interesting

1. Solaris

Solaris v Ubuntu using OpenSSL paste problem

Hello, I hope this means something to someone. I have an odd problem that just started happening recently. I am not the system admin, so I don't have full info on any changes to the system lately. Except that I did upgrade OpenSSL to version 1.0.1.c from 1.0.0j. Anyway, I am trying to... (4 Replies)
Discussion started by: jonycp
4 Replies
Login or Register to Ask a Question

LEARN ABOUT DEBIAN

globus-update-certificate-dir

GLOBUS-UPDATE-CERT(8)					      GSI-C OpenSSL Commands					     GLOBUS-UPDATE-CERT(8)

NAME

       globus-update-certificate-dir - Update symlinks in the trusted CA directory

SYNOPSIS

       globus-update-certificate-dir [-help] [-d DIRECTORY]

DESCRIPTION

       The globus-update-certificate-dir program creates symlinks between files (CA certificates, certificate revocation lists, signing policy,
       and certificate request configuration files) using the certificate hash the installed version of OpenSSL uses. OpenSSL 1.0.0 uses a
       different name hashing algorithm than previous versions, so CA distributions created with older versions of OpenSSL might not be able to
       locate trusted CAs and related files. Running globus-update-certificate-dir against a trusted CA directory will add symlinks to the files
       to the hash if needed.

       The full set of command-line options to globus-update-certificate-dir consists of:

       -help
	   Display a help message to standard output and exit

       -d DIRECTORY
	   Create links in the trusted CA directory DIRECTORY instead of using the default search path.

ENVIRONMENT

       If the following variables affect the execution of globus-update-certificate-dir

       X509_CERT_DIR
	   Default trusted certificate directory.

       HOME
	   Path to the current user's home directory.

       GLOBUS_LOCATION
	   Path to the Globus installation.

University of Chicago						    02/18/2010						     GLOBUS-UPDATE-CERT(8)