blkn
Posts: 10
Joined: Sun Jul 19, 2015 3:56 pm

Logjam

Tue Jul 21, 2015 8:39 pm

Hi folks,

Is there a way to mitigate Logjam vulnerability in Raspbian? AFAIK apache 2.2.x does not support SSLOpenSSLConfCmd which is needed to prevent it.

Thanks in advance!

User avatar
DougieLawson
Posts: 36578
Joined: Sun Jun 16, 2013 11:19 pm
Location: Basingstoke, UK
Contact: Website Twitter

Re: Logjam

Tue Jul 21, 2015 9:14 pm

It appears to be impossible to completely fix it in Raspbian Wheezy. The fix needs Apache2.4 which is in Raspbian Jessie.
Note: Having anything humorous in your signature is completely banned on this forum. Wear a tin-foil hat and you'll get a ban.

Any DMs sent on Twitter will be answered next month.

This is a doctor free zone.

blkn
Posts: 10
Joined: Sun Jul 19, 2015 3:56 pm

Re: Logjam

Wed Jul 22, 2015 5:42 pm

So can't we run apache/tls on Raspbian?

Tom_A
Posts: 272
Joined: Fri Dec 06, 2013 8:34 am

Re: Logjam

Wed Jul 22, 2015 5:58 pm

DougieLawson wrote:It appears to be impossible to completely fix it in Raspbian Wheezy. The fix needs Apache2.4 which is in Raspbian Jessie.
Just curious, how is Nginx on Wheezy? Would that require Jessie as well to fix?

User avatar
r3d4
Posts: 968
Joined: Sat Jul 30, 2011 8:21 am
Location: ./

Re: Logjam

Wed Jul 22, 2015 10:01 pm

blkn wrote:So can't we run apache/tls on Raspbian?
You could try and build it!
But idk how far that might get you to a 'working' Apache2.4 .
Tom_A wrote:
DougieLawson wrote:It appears to be impossible to completely fix it in Raspbian Wheezy. The fix needs Apache2.4 which is in Raspbian Jessie.
Just curious, how is Nginx on Wheezy? Would that require Jessie as well to fix?
Presumably you could (at least try to) build the latest nginx on Wheezy ,...

Return to “Raspbian”