Re: [SECURITY] [DSA 3500-1] openssl security update

To: debian-security@lists.debian.org
Subject: Re: [SECURITY] [DSA 3500-1] openssl security update
From: Peter Ludikovsky <peter@ludikovsky.name>
Date: Wed, 2 Mar 2016 09:34:51 +0100
Message-id: <[🔎] 56D6A5AB.3090702@ludikovsky.name>
In-reply-to: <[🔎] 56D69F7E.7000906@aei.mpg.de>
References: <56d5a87c.85b01c0a.2ea07.6277@mx.google.com> <[🔎] 56D69F7E.7000906@aei.mpg.de>

Hello,

Take a look at checkrestart [1] from the debian-goodies package. It
tells you which processes are using deleted files, and if possible which
service to restart.


Regards
/peter

[1] http://manpages.debian.org/cgi-bin/man.cgi?query=checkrestart

Am 02.03.2016 um 09:08 schrieb Carsten Aulbert:
> Hi
> 
> brief question for a possible addendum. I believe one should at least
> restart services which are currently using openssl after patching it,
> right, e.g. trying to figure out by lsof -n | grep openssl.
> 
> (or reboot the machine)
> 
> Would it make sense to add that to the DSA 3500-1 page, like for
> DSA-3481[1]?
> 
> Cheers
> 
> Carsten
> 
> [1] "While it is only necessary to ensure that all processes are not
> using the old glibc anymore, it is recommended to reboot the machines
> after applying the security upgrade."
> 
> 
>

Attachment: signature.asc
Description: OpenPGP digital signature

Reply to:

References:
- Re: [SECURITY] [DSA 3500-1] openssl security update
  - From: Carsten Aulbert <Carsten.Aulbert@aei.mpg.de>

Prev by Date: Re: [SECURITY] [DSA 3500-1] openssl security update
Next by Date: Re: [SECURITY] [DSA 3500-1] openssl security update
Previous by thread: Re: [SECURITY] [DSA 3500-1] openssl security update
Next by thread: Re: [SECURITY] [DSA 3500-1] openssl security update
Index(es):
- Date
- Thread