Re: [SECURITY] [DSA 2897-1] tomcat7 security update

FYI On Tue, Apr 8, 2014 at 8:25 PM, Moritz Muehlenhoff wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > - - > Debian Security Advisory DSA-2897-1 secur...@debian.org > http://www.debian.org/sec

Re: DSA 2896-2 openssl - Apache 2 not detected as service to restart by postinst?

Hi Frederik, On Tue, Apr 08, 2014 at 04:01:37PM +, Fredrik Jonson wrote: > Hi, > > After upgrading the packages in DSA 2896-2 (openssl security update), > the second version, 1.0.1e-2+deb7u6, that detects services to restart, I > noted that the postist script didn't suggest that I should rest

AW: DSA 2896-2 openssl - Apache 2 not detected as service to restart by postinst?

Hi, I can confirm this behaviour. In addition I am quite sure that apache2 is affected because I have tested it with the heartbleed check (http://heartbleed.com) directly after the security update and it was still vulnerable. After I restarted apache2 manually the vulnerability was gone. Rega

DSA 2896-2 openssl - Apache 2 not detected as service to restart by postinst?

Hi, After upgrading the packages in DSA 2896-2 (openssl security update), the second version, 1.0.1e-2+deb7u6, that detects services to restart, I noted that the postist script didn't suggest that I should restart apache2. As far as I can tell apache2 (apache2.2-bin) depends on libssl1.0.0 and co