General discussion

Locked

Version of OpenSSL

By fimos ·
Hi,
During a Pen-test for one of the clients, Nessus had reported that the version of OpenSSL installed has buffer overflow vulnerability (the version is older than 0.9.6.e).

I need to manually reconfirm the version of SSL installed on the server. The installation is on Netscape Proxy Server 3.6 (Sun OS 5.6)

Do let me know how do I manually determine the version of OpenSSL.

This conversation is currently closed to new comments.

5 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Comments

Collapse -

by joematus In reply to Version of OpenSSL

Grab the banner:

telnet host.foo.com 22

This should give you the banner telling you the version number.

Collapse -

by fimos In reply to

Joe,
That's OpenSSH!!!!

Collapse -

by support In reply to Version of OpenSSL

at the command line type in ....

openssl version

That works on linux, should be same on Sun.
If not go to your man pages for openssl or check you system package manager (e.g. in linux its rpm)

Collapse -

by fimos In reply to

Poster rated this answer.

Collapse -

by fimos In reply to Version of OpenSSL

This question was closed by the author

Back to Linux Forum
5 total posts (Page 1 of 1)  

Related Discussions

Related Forums