{"id":205,"date":"2014-06-06T19:36:16","date_gmt":"2014-06-06T10:36:16","guid":{"rendered":"https:\/\/www.gwaw.jp\/2014\/?p=205"},"modified":"2014-09-14T15:44:14","modified_gmt":"2014-09-14T06:44:14","slug":"openssl-%e3%81%ab%e6%96%b0%e3%81%9f%e3%81%aa%e8%84%86%e5%bc%b1%e6%80%a7%e3%81%8c%e7%99%ba%e8%a6%8b%e3%81%95%e3%82%8c%e3%82%8b","status":"publish","type":"post","link":"http:\/\/www.gwaw.jp\/2014\/?p=205","title":{"rendered":"OpenSSL \u306b\u65b0\u305f\u306a\u8106\u5f31\u6027\u304c\u767a\u898b\u3055\u308c\u308b"},"content":{"rendered":"<p>2014\u5e746\u67086\u65e5\u306e\u65e9\u671d\u3001\u5f53\u30b5\u30fc\u30d0\u30fc\u306b\u3066 yum update \u30b3\u30de\u30f3\u30c9\u3092\u5b9f\u884c\u3057\u305f\u3068\u3053\u308d\u3001OpenSSL \u306e\u30a2\u30c3\u30d7\u30c7\u30fc\u30c8\u304c\u6848\u5185\u3055\u308c\u307e\u3057\u305f\u3002\u3053\u306e\u6642\u70b9\u3067\u5185\u5bb9\u306f\u307e\u3063\u305f\u304f\u628a\u63e1\u3057\u3066\u3044\u307e\u305b\u3093\u3067\u3057\u305f\u304c\u3001\u300cHeartbleed\u300d\u306e\u4ef6\u3082\u3042\u308a\u307e\u3057\u305f\u306e\u3067\u3001\u3068\u308a\u3042\u3048\u305a\u3053\u306e\u30a2\u30c3\u30d7\u30c7\u30fc\u30c8\u3092\u53d7\u3051\u5165\u308c\u3066\u3044\u307e\u3059\u3002<br \/>\n\u3061\u306a\u307f\u306b\u3001\u3053\u306e\u3068\u3053\u308d\u306f\u3001\u307b\u307c\u6bce\u65e5\u30a2\u30c3\u30d7\u30c7\u30fc\u30c8\u306e\u30c1\u30a7\u30c3\u30af\u3092\u5b9f\u65bd\u3057\u3066\u3044\u307e\u3059\u3002<\/p>\n<p><a href=\"https:\/\/www.openssl.org\/news\/secadv_20140605.txt\">SSL\/TLS MITM vulnerability (CVE-2014-0224)<\/a> <a href=\"https:\/\/www.openssl.org\/news\/secadv_20140605.txt\">https:\/\/www.openssl.org\/news\/secadv_20140605.txt<\/a><\/p>\n<p>\u3053\u306e\u4ef6\u304c\u91cd\u5927\u306a\u8106\u5f31\u6027\u3068\u3055\u308c\u3066\u3044\u307e\u3059\u3002<\/p>\n<p><a href=\"http:\/\/www.gwaw.jp\/2014\/wp-content\/uploads\/sites\/3\/2014\/06\/wpid-screenshot_2014-06-06-18-42-54021.png\"><img decoding=\"async\" title=\"Screenshot_2014-06-06-18-42-54~02.png\" class=\"alignnone size-full\" alt=\"image\" src=\"http:\/\/www.gwaw.jp\/2014\/wp-content\/uploads\/sites\/3\/2014\/06\/wpid-screenshot_2014-06-06-18-42-5402.png\" \/><\/a><\/p>\n<div class=\"float-clear\">&nbsp;<\/div>\n<p>MITM \u306f\u3001Man in the Middle \u306e\u7565\u3067\u3001\u60c5\u5831\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u7528\u8a9e\u306e \u4e2d\u9593\u8005\u653b\u6483 Man-in-the-Middle attack \u3092\u8868\u3057\u3066\u3044\u307e\u3059\u3002<\/p>\n<p>OpenSSL \u3088\u308a\u516c\u958b\u3055\u308c\u3066\u3044\u308b\u6587\u66f8\u3067\u306f\u3001 0.9.8za\u30011.0.0m\u30011.0.1h \u3078\u306e\u30a2\u30c3\u30d7\u30b0\u30ec\u30fc\u30c9\u3092\u52e7\u3081\u3066\u3044\u307e\u3059\u3002<\/p>\n<p>\u3055\u3066\u3001\u4eca\u56de yum update \u3067\u30ea\u30ea\u30fc\u30b9\u3055\u308c\u3066\u3044\u305f OpenSSL \u306f\u30011.0.1e-16.el6_5.14\u3002<\/p>\n<p><a href=\"http:\/\/lists.centos.org\/pipermail\/centos-announce\/2014-June\/020344.html\">http:\/\/lists.centos.org\/pipermail\/centos-announce\/2014-June\/020344.html<\/a><\/p>\n<p><a href=\"https:\/\/rhn.redhat.com\/errata\/RHSA-2014-0625.html\">https:\/\/rhn.redhat.com\/errata\/RHSA-2014-0625.html<\/a><\/p>\n<p>\u3053\u308c\u3089\u3088\u308a\u3001CentOS6 \u3067\u306f\u3001\u3053\u306e\u30ea\u30ea\u30fc\u30b9\u306b\u3066\u5bfe\u5fdc\u3068\u306e\u3053\u3068\u3067\u3059\u3002<\/p>\n<p>\u5f53\u30b5\u30a4\u30c8\u306f\u3001https \u306b\u3066\u4e00\u822c\u306b\u516c\u958b\uff08\u30ea\u30f3\u30af\uff09\u3057\u3066\u3044\u308b\u30da\u30fc\u30b8\u304c\u3042\u308a\u307e\u305b\u3093\u304c\u3001\u3042\u3048\u3066 https \u3067\u95b2\u89a7\u3059\u308b\u3053\u3068\u3082\u3067\u304d\u307e\u3059\u3002\u305d\u306e\u3088\u3046\u306a\u3053\u3068\u3082\u3042\u308a\u3001\u5ff5\u306e\u305f\u3081\u3002<\/p>\n","protected":false},"excerpt":{"rendered":"<p>2014\u5e746\u67086\u65e5\u306e\u65e9\u671d\u3001\u5f53\u30b5\u30fc\u30d0\u30fc\u306b\u3066 yum update \u30b3\u30de\u30f3\u30c9\u3092\u5b9f\u884c\u3057\u305f\u3068\u3053\u308d\u3001OpenSSL \u306e\u30a2\u30c3\u30d7\u30c7\u30fc\u30c8\u304c\u6848\u5185\u3055\u308c\u307e\u3057\u305f\u3002\u3053\u306e\u6642\u70b9\u3067\u5185\u5bb9\u306f\u307e\u3063\u305f\u304f\u628a\u63e1\u3057\u3066\u3044\u307e\u305b\u3093\u3067\u3057\u305f\u304c\u3001\u300cHeartbleed\u300d\u306e\u4ef6\u3082\u3042 [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-205","post","type-post","status-publish","format-standard","hentry","category-1"],"_links":{"self":[{"href":"http:\/\/www.gwaw.jp\/2014\/index.php?rest_route=\/wp\/v2\/posts\/205","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.gwaw.jp\/2014\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.gwaw.jp\/2014\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.gwaw.jp\/2014\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/www.gwaw.jp\/2014\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=205"}],"version-history":[{"count":1,"href":"http:\/\/www.gwaw.jp\/2014\/index.php?rest_route=\/wp\/v2\/posts\/205\/revisions"}],"predecessor-version":[{"id":206,"href":"http:\/\/www.gwaw.jp\/2014\/index.php?rest_route=\/wp\/v2\/posts\/205\/revisions\/206"}],"wp:attachment":[{"href":"http:\/\/www.gwaw.jp\/2014\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=205"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.gwaw.jp\/2014\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=205"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.gwaw.jp\/2014\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=205"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}