Red Hat Secure Web Server 1.0 Errata
- 17-Aug-1998: SSL server
- SSL Server
Updated: 17-Aug-1998
Problem:
- (17-Aug-1998)Security Fix: A denial of service attack against the apache web server has been fixed.
- (17-Aug-1998)Security Fix: A security hole has been found with some SSL connections. This updated RPM fixes this problem.
Solution:
-
These packages are distributed as a rhmask file to comply with our patent licensing agreements with RSA Data Security, Inc. for their encryption technology. To use them, you need to use the 'rhmask' utility which is distributed as a part of Red Hat Linux. If you do not already have it installed, please install it from your Red Hat Linux CD or ftp site before proceeding.
The new packages can be found on ftp.redhat.com in the secure web server ftp://ftp.redhat.com/pub/redhat/updates/secureweb/i386 errata directory.
To produce installable RPM files from the rhmask files, do the following:
Download the rhmasked RPM's
Red Hat 4.2 (libc5) systems should download
ftp://ftp.redhat.com/pub/redhat/updates/secureweb/i386/apache-ssl-1.2.6-3.i386.rpm.rhmask
and
ftp://ftp.redhat.com/pub/redhat/updates/secureweb/i386/apache-ssl-utils-1.2.6-3.i386.rpm.rhmask
Red Hat 5.x (glibc2) systems should download
ftp://ftp.redhat.com/pub/redhat/updates/secureweb/i386/apache-ssl-1.2.6-3glibc.i386.rpm.rhmask
and
ftp://ftp.redhat.com/pub/redhat/updates/secureweb/i386/apache-ssl-utils-1.2.6-3glibc.i386.rpm.rhmask
Un-rhmask the RPM's
Copy the rhmask rpms and the original rpms to /tmp and execute the following commands:
For Red Hat 4.2 systems.
rhmask apache-ssl-1.2.6-1.i386.rpm apache-ssl-1.2.6-3.i386.rpm.rhmask rhmask apache-ssl-utils-1.2.6-1.i386.rpm apache-ssl-utils-1.2.6-3.i386.rpm.rhmask
For Red Hat 5.x systems.
rhmask apache-ssl-1.2.6-1glibc.i386.rpm apache-ssl-1.2.6-3glibc.i386.rpm.rhmask rhmask apache-ssl-utils-1.2.6-1glibc.i386.rpm apache-ssl-utils-1.2.6-3glibc.i386.rpm.rhmask
The original RPMs are located only on your Secure Web Server CD, and cannot be obtained via the Internet. Note: if you do not have the original RPMs located in the same directory as the rhmask file, you will need to prefix the name of the RPMs with the full path name to their location (i.e. on your installation CD).
Once the new packages have been created, you can upgrade to them with:
Red Hat 4.2:
rpm -Uvh apache-ssl-utils-1.2.6-3.i386.rpm rpm -Uvh apache-ssl-1.2.6-3.i386.rpm
Red Hat 5.x:
rpm -Uvh apache-ssl-utils-1.2.6-3glibc.i386.rpm rpm -Uvh apache-ssl-1.2.6-3glibc.i386.rpm
To restart your Secure Web server, do the following:
/etc/rc.d/init.d/httpsd restart
These packages have been PGP signed by Red Hat.