Open SSL problem / FREAK SSL attack


#1

https://tools.keycdn.com/freak tool says that my website (powered by EasyEngine 3.7.5) is vulnerable to the SSL FREAK attacks. I upgraded Open SSL using this command:

  • openssl version (to check open SSL version)
  • sudo apt-get upgrade openssl

My question is following. Is it okay to do that or it may break my website setup after some time (during EE upgrade process) ?


#2

Use this script to update Nginx & OpenSSL to the Latest Version that will resolve this issue: https://github.com/VirtuBox/nginx-ee/tree/master


#3