blkn
Posts: 10
Joined: Sun Jul 19, 2015 3:56 pm

Logjam

Tue Jul 21, 2015 8:39 pm

Hi folks,

Is there a way to mitigate Logjam vulnerability in Raspbian? AFAIK apache 2.2.x does not support SSLOpenSSLConfCmd which is needed to prevent it.

Thanks in advance!

User avatar
DougieLawson
Posts: 39169
Joined: Sun Jun 16, 2013 11:19 pm
Location: A small cave in deepest darkest Basingstoke, UK
Contact: Website Twitter

Re: Logjam

Tue Jul 21, 2015 9:14 pm

It appears to be impossible to completely fix it in Raspbian Wheezy. The fix needs Apache2.4 which is in Raspbian Jessie.
Note: Any requirement to use a crystal ball or mind reading will result in me ignoring your question.

Criticising any questions is banned on this forum.

Any DMs sent on Twitter will be answered next month.
All non-medical doctors are on my foes list.

blkn
Posts: 10
Joined: Sun Jul 19, 2015 3:56 pm

Re: Logjam

Wed Jul 22, 2015 5:42 pm

So can't we run apache/tls on Raspbian?

Tom_A
Posts: 272
Joined: Fri Dec 06, 2013 8:34 am

Re: Logjam

Wed Jul 22, 2015 5:58 pm

DougieLawson wrote:It appears to be impossible to completely fix it in Raspbian Wheezy. The fix needs Apache2.4 which is in Raspbian Jessie.
Just curious, how is Nginx on Wheezy? Would that require Jessie as well to fix?

User avatar
r3d4
Posts: 983
Joined: Sat Jul 30, 2011 8:21 am
Location: ./

Re: Logjam

Wed Jul 22, 2015 10:01 pm

blkn wrote:So can't we run apache/tls on Raspbian?
You could try and build it!
But idk how far that might get you to a 'working' Apache2.4 .
Tom_A wrote:
DougieLawson wrote:It appears to be impossible to completely fix it in Raspbian Wheezy. The fix needs Apache2.4 which is in Raspbian Jessie.
Just curious, how is Nginx on Wheezy? Would that require Jessie as well to fix?
Presumably you could (at least try to) build the latest nginx on Wheezy ,...

Return to “Raspberry Pi OS”