Securing Open Secure Sockets Layer (OpenSSL)

To stay protected, consider the following:

  • Identify the OpenSSL version on each of the servers that has the libraries installed. Check to see if you have the latest version and if your version of OpenSSL has remotely exploitable vulnerabilities.
  • Upgrade your OpenSSL library to the latest version from the OpenSSL website at http://www.openssl.org.
  • Identify applications that use the OpenSSL library, and if they require recompilation because of the upgrade, recompile them to use the new libraries.

If applications using OpenSSL don’t require connections from everyone, create a proper firewall to allow connections only from trusted sites.

Leave a Reply

Your email address will not be published. Required fields are marked *