Author Topic: OpenSSL version no longer supported  (Read 562 times)

0 Members and 1 Guest are viewing this topic.

Offline
*
OpenSSL version no longer supported
« on: June 07, 2024, 06:00:49 PM »
The version of OpenSSL we have stopped receiving support in 2020, yet yum tells us we have the most current version available. It is kicking numerous security errors on a Pen Test. Running CentOs 7. How can we update to a more current version of OpenSSL without breaking everything?

Offline
*
Re: OpenSSL version no longer supported
« Reply #1 on: June 07, 2024, 07:08:33 PM »
Just an update - I've installed OpenSSL 3.3.1 on the server, and in the terminal it shows the version as OpenSSL 3.3.1 4 Jun 2024 (Library: OpenSSL 3.3.1 4 Jun 2024).

Yet, in CWP is is still showing as 1.0.2. I think there may be a setting in Apache SSL that needs fixing but am not sure. Can anyone point me in the right directions? Thanks in advance.

Offline
*****
Re: OpenSSL version no longer supported
« Reply #2 on: June 07, 2024, 07:24:53 PM »
Upgrade from CentOS 7...

Everyone has know EOL for that OS was coming...

Offline
*
Re: OpenSSL version no longer supported
« Reply #3 on: June 08, 2024, 01:45:25 PM »
Any recommendations? I'm concerned about the lack of potential exit from Stream. Rocky and Alma seem to be an option but may have CWP issues. Interested in any thoughts...

Offline
*****
Re: OpenSSL version no longer supported
« Reply #4 on: June 09, 2024, 01:49:31 AM »
AlmaLinux is the new Recommended version to install CWP onto.

CentOS Stream is a beta OS, and it's recommended due to it's instability.

We use AlmaLinux 8.x without issues, and now have 3 systems with 9.x running with CWP.

Offline
*****
Re: OpenSSL version no longer supported
« Reply #5 on: June 09, 2024, 04:51:07 AM »
AlmaLinux 8 for now, AlmaLinux 9 when CWP comes out of beta for EL9 releases.

Offline
*
Re: OpenSSL version no longer supported
« Reply #6 on: June 10, 2024, 02:51:05 PM »
Thank you! We will give AlmaLinux a try. Appreciate the feedback.