Hot!Open ssl version

Author
Waleed Wardany
Silver Member
  • Total Posts : 70
  • Scores: 2
  • Reward points: 0
  • Joined: 2012/10/30 05:49:33
  • Status: offline
2016/09/27 02:39:10 (permalink)
0

Open ssl version

how can i know version of open ssl also can i upgrade this version ?
#1
emnoc
Expert Member
  • Total Posts : 5546
  • Scores: 357
  • Reward points: 0
  • Joined: 2008/03/20 13:30:33
  • Location: AUSTIN TX AREA
  • Status: offline
Re: Open ssl version 2016/09/27 07:27:39 (permalink)
0
what do you exacting mean by open ssl version? 

PCNSE 
NSE 
StrongSwan  
#2
ede_pfau
Expert Member
  • Total Posts : 6241
  • Scores: 522
  • Reward points: 0
  • Joined: 2004/03/09 01:20:18
  • Location: Heidelberg, Germany
  • Status: offline
Re: Open ssl version 2016/09/27 08:13:22 (permalink)
0
This relates to the recent news that OpenSSL in certain version is compromised. And that FortiOS uses OpenSSL code.
Look for yourself...https://www.openssl.org/news/vulnerabilities.html
OMG that's a LOT of bugs this year alone. Good to know but bad to use.
 
@Waleed:
AFAIK you cannot determine the code version used. No sense in asking Support because if I were FTNT I wouldn't tell for obvious reasons.
 
'Upgrading' is done by FTNT by recompiling the code against a safe version and publishing that as a patch release.

Ede

" Kernel panic: Aiee, killing interrupt handler!"
#3
emnoc
Expert Member
  • Total Posts : 5546
  • Scores: 357
  • Reward points: 0
  • Joined: 2008/03/20 13:30:33
  • Location: AUSTIN TX AREA
  • Status: offline
Re: Open ssl version 2016/09/27 08:19:02 (permalink)
0
Follow the release notes and upgrades  to stay  update to best security and functions.
 

PCNSE 
NSE 
StrongSwan  
#4
Waleed Wardany
Silver Member
  • Total Posts : 70
  • Scores: 2
  • Reward points: 0
  • Joined: 2012/10/30 05:49:33
  • Status: offline
Re: Open ssl version 2016/09/28 01:07:02 (permalink)
0
at first many thanks for u all , after follow release notes i know that openssl issues solved in some patches so i will upgrade to solve our issues
 
but i want to know if can i use any thing instead openssl through fortimail ?
#5
bommi
Gold Member
  • Total Posts : 147
  • Scores: 12
  • Reward points: 0
  • Joined: 2016/08/03 03:42:49
  • Location: Germany
  • Status: offline
Re: Open ssl version 2016/09/28 07:48:39 (permalink)
0
Waleed Wardany
at first many thanks for u all , after follow release notes i know that openssl issues solved in some patches so i will upgrade to solve our issues
 
but i want to know if can i use any thing instead openssl through fortimail ?




It cant be fixed in the latest FortiMail release.
The OpenSSL fix release is newer than the latest FortiMail release.
OpenSSL released their fixes on 22 September 2016 and FortiMail 5.3.5 has been released on 20 September 2016.
#6
fsfetea
New Member
  • Total Posts : 9
  • Scores: 0
  • Reward points: 0
  • Joined: 2018/12/11 02:33:16
  • Status: offline
Re: Open ssl version 2019/12/30 15:11:45 (permalink)
0
by using
# fnsysctl ls usr/lib/x86_64-linux-gnu/
freerdp gssntlmssp.so ld-linux-x86-64.so.2 
libblkid.so.1 libc.so.6 libcairo.so.2 
libcom_err.so.2 libcom_err.so.3 libcrypt.so.1 
libcrypto.so.1.1  libdl.so.2 libe2p.so.2 
libext2fs.so.2 libffi.so.6 libfosrt.so 
libfreerdp-client.so.1.2 libfreerdp.so.1.2 libfreetype.so.2.8 
libgcc_s.so.1 libgd.so.3 libglib-2.0.so.0 
libgmp.so.10 libgobject-2.0.so.0 libgomp.so.1 
libgssapi_krb5.so.2 libguac-client-rdp.so libguac-client-vnc.so 
libguac-common.so libguac.so libiconv.so 
libjpeg.so.9 libk5crypto.so.3 libklib.so 
libkrb5.so.3 libkrb5support.so.0 liblasso.so.3 
liblber-2.4.so.2 libldap-2.4.so.2 liblmdb.so 
libltdl.so.7 libm.so.6 libpixman-1.so.0 
libpng.so.3 libpng12.so.0 libpth_pthread.so 
libpthread.so.0 libresolv.so.2 librt.so.1 
libsegfault.so libssl.so.1.1 libstdc++.so.6 
libunistring.so.2 libunwind.so.8 libusb-1.0.so.0 
libusb-cx.so libutil.so.1 libuuid.so.1 
libvncclient.so.1 libwinpr.so.1.1 libxml2.so.2 
libxmlsec1-openssl.so libxmlsec1-openssl.so.1 libxmlsec1.so.1 
libxslt.so.1 libz.so.1 x86_64-linux-gnu 

 We could deduce based on that lib that it is an openssl 1.1(?)
and because my FortiOS version supports TLS 1.3 it must be 1.1.1(something)
post edited by fsfetea - 2019/12/30 15:15:23
#7
Jump to:
© 2020 APG vNext Commercial Version 5.5