The OpenSSL package is an open source for effort to develop a security purpose, robust, Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3), Transport Layer Security (TLS v1.0/v1.1/v1.2) protocol and It's provides cryptographic functionality for the internet to communicate. This is managed by a worldwide community of volunteers.
If you are facing vulnerable problems to a remote attacker to access parts of memory on systems should update the openSSL latest version.
By default unable to upgrade to latest version by YUM command, the below steps will guide you to install and update on CentOS 6 and CentOS 7
Step 1 : Check Version:
To check OpenSSL current version on your system,
# openssl version
OpenSSL 1.0.1e-fips 11 Feb 2013
Step 2 : Download Latest Version:
You need to download latest version from the Link and extract to /usr/local/src
# wget https://openssl.org/source/openssl-1.0.2d.tar.gz
# tar -zxvf openssl-1.0.2d.tar.gz -C /usr/local/src
# tar -zxvf openssl-1.0.2d.tar.gz -C /usr/local/src
Step3 : Install :
# cd /usr/local/src/openssl-1.0.2d
# ./config
# make
# make install
# ./config
# make
# make install
Now move the default openssl file to root directory then give soft link
# mv /usr/bin/openssl /root/
# ln -s /usr/local/ssl/bin/openssl /usr/bin/openssl
# ln -s /usr/local/ssl/bin/openssl /usr/bin/openssl
Finally, check your OpenSSL version again,
# openssl version
OpenSSL 1.0.2d 9 Jul 2015
I followed this tutorial and successfully upgraded my openssl to 1.0.2h. However, when I then install Nginx, nginx will be built with openssl 1.0.1e, NOT 1.0.2h I just installed. It seems that Nginx installer script can not recognize this new version of openssl. How to let Nginx detect new openssl 1.0.2h version and built Nginx server with it? Thank you.
@Joomlagate I had the same issue. You have to compile nginx with a pointer to the version of openssl that you want it to use. I was going to show you what I did, but my comment with the code is being marked as spam. Take a look at github . com / jacobfogg / AWS-Bash-Scripts