Few months ago, we all have faced OpenSSL TLS heartbeat (versions 1.0.1 through 1.0.1f and 1.0.2 beta through 1.0.2-beta1) vulnerability, to resolve the issue, two solution is available , 1st to install openssl from scratch and 2nd to upgrade existing oenssl to the latest version.
We can install and upgrade the openssl using the following commands.
Login into the server as root user
cd /usr/local/src/
wget http://www.openssl.org/source/openssl-1.0.1e.tar.gz
tar -xvf openssl*
cd openssl-1.0.1e
./config
make
make test
make install
openssl version
which openssl
/usr/bin/openssl -v
mv /usr/bin/openssl /root/
ln -s /usr/local/ssl/bin/openssl /usr/bin/openssl
[root@ src]# /usr/bin/openssl version
OpenSSL 1.0.1e 11 Feb 2013
To check openssl version, refer to the following URL
https://filippo.io/Heartbleed/
