Test Your Site for Heartbleed
Free easy test here:
bytesnake last edited by
Another quick check if your servers are affected: check the installed version of openssl
Run the command: # openssl version to get the version number of openssl. If the command shows e.g.:
OpenSSL 1.0.1e 11 Feb 2013
then your server might be vulnerable as the version is below 1.0.1g. But some Linux distributions patch packages, see below for instructions to find out if the package on your server has been patched.
If your server uses a 0.9.8 release like it is used on Debian squeeze, then the server is not vulnerable as the heartbeat function has been implemented in OpenSSL 1.0.1 and later versions only.
For quick reference, RHEL / CentOS 5.x is not affected. RHEL / CentOS 6.x is affected. If you auto-patch, you are all set.
Ambarishrh last edited by