openssl-0.9.8a

H

hackerpitbull

Verified User
Joined
Dec 25, 2004
Messages
92
Oct 11 12:37:49 2005 openssl-0.9.8a.tar.gz (MD5) (SHA1) (PGP sign) [LATEST]

For Red Hat (CentOS, RH. RHE. Fedora)
Code: 
cd /usr/src
wget [url]http://www.openssl.org/source/openssl-0.9.8a.tar.gz[/url]
tar xvzf openssl-0.9.8a.tar.gz
cd openssl-0.9.8a/

rm -rf /usr/lib/libssl.so.0
rm -rf  /usr/lib/libssl.so
rm  -rf /lib/libssl.so.2
rm  -rf /usr/lib/libcrypto.so.0

./config --prefix=/usr no-threads shared
make
make test
make install
echo "/usr/local/ssl/lib" >> /etc/ld.so.conf
ldconfig -v

rm -f /lib/libssl.so.4
rm -f /usr/lib/libcrypto.so.0
ln -s /usr/lib/libssl.so.0.9.8 /lib/libssl.so.4
ln -s /usr/lib/libcrypto.so.0.9.8 /usr/lib/libcrypto.so.0

cd /usr/local/directadmin/customapache
rm -f configure.*
./build clean
./build update
./build all
 
0.9.7i is released as well for those sticking with the 0.9.7x branch.

hackerpitbull have you been using 0.9.8 without problems on all your apps apache etc.?
 
Chrysalis said:
0.9.7i is released as well for those sticking with the 0.9.7x branch.

hackerpitbull have you been using 0.9.8 without problems on all your apps apache etc.?
Click to expand...
I'm using Openssl 0.9.8 2 or 3 month,
the only problem I had was installing 0.9.8 (becuase mod_ssl 2.8.22 didnt support 0.9.8) :)
 
You need to redo Exim as well:

Code: 
wget [url]http://files.directadmin.com/services/da_exim-4.54-1.src.rpm[/url]
rpm -ivh da_exim-4.54-1.src.rpm
cd /usr/src/redhat/SPECS
rpmbuild -bb exim.spec
cd /usr/src/redhat/RPMS/i386
rpm -Uvh --force --nodeps da_exim-4.54-1.i386.rpm
 
hackerpitbull said:
I'm using Openssl 0.9.8 2 or 3 month,
the only problem I had was installing 0.9.8 (becuase mod_ssl 2.8.22 didnt support 0.9.8) :)
Click to expand...

the new mod_ssl has no problem then?
 
Chrysalis said:
the new mod_ssl has no problem then?
Click to expand...
"06-Jul-2005: Released 2.8.23-1.3.33: For OpenSSL 0.9.8!"
If u have apache 1.3.33 use mod ssl 2.8.24-1.3.33.
If u have apache 1.3.34 use mod ssl 2.8.25-1.3.34.

only mod_ssl 2.8.22 (and below) wouldnt support openssl 0.9.8.

I use apache 1.3.34 mod ssl 2.8.25 openssl 0.9.8a.
 
Would someone be kind enough to add a FreeBSD guide to this thread also plz
 
FreeBSD havent implemented openssl 0.9.8 in the os yet so you need to install the port.

substitute nano with your favourite editor.

nano /etc/make.conf
add following lines

WITH_OPENSSL_PORT=yes
WITH_OPENSSL_BETA=yes

cd /usr/ports/security/openssl
make install clean
reinstall all ports that depend on openssl
reinstall standalone apps including customapache that depend on ssl making sure they use the one in /usr/local not the base version.

If you havent got the /usr/ports dir you need to install the ports repository which is beyond the scope of this guide.
 
reinstall all ports that depend on openssl

How can we know which port depends on it? Or just reinstall all?
 
using portupgrade with the following switch

-r --recursive Act on all those packages depending on the given packages as well.

add -f as well wince its not an upgrade but reinstall.

and in customapache mod_ssl, php and curl will need doing.
 
Just did "portupgrade -rf openssl-beta" to reinstall other ports which depends on openssl. Hofefully, I did correctly!

Then reinstalled mod_ssl, curl, php via DA.

Thank you, Chrysalis!
 
Hello,

Since the upgrade to the version 0.9.8a i've got a problem. https don't run and in my httpd's error_log I've got that :

[Thu Nov 17 05:28:09 2005] [error] mod_ssl: SSL handshake failed (server localhost:443, client 1.2.3.4) (OpenSSL library error follows)
[Thu Nov 17 05:28:09 2005] [error] OpenSSL: error:140760FC:SSL routines:SSL23_GET_CLIENT_HELLO:unknown protocol [Hint: speaking not SSL to HTTPS port!?]

What is the problem ? I think the problem i have got two versions of openssl (0.9.7 et 0.9.8) but i don't know how to delete one version. Please help me. Thanks. Bye.
 
Avenueduweb said:
Hello,

Since the upgrade to the version 0.9.8a i've got a problem. https don't run and in my httpd's error_log I've got that :

[Thu Nov 17 05:28:09 2005] [error] mod_ssl: SSL handshake failed (server localhost:443, client 1.2.3.4) (OpenSSL library error follows)
[Thu Nov 17 05:28:09 2005] [error] OpenSSL: error:140760FC:SSL routines:SSL23_GET_CLIENT_HELLO:unknown protocol [Hint: speaking not SSL to HTTPS port!?]

What is the problem ? I think the problem i have got two versions of openssl (0.9.7 et 0.9.8) but i don't know how to delete one version. Please help me. Thanks. Bye.
Click to expand...
maybe u didnt update mod_ssl..
Code: 
cd /usr/local/directadmin/customapache
rm -f configure.*
./build clean
./build update
./build all
 
hackerpitbull said:
maybe u didnt update mod_ssl..
Code: 
cd /usr/local/directadmin/customapache
rm -f configure.*
./build clean
./build update
./build all
Click to expand...

Thanks,

But I have updated with ./build all and don't run so i have tested with ./build apache_mod_ssl and don't run too. I don't know what is the problem. In my phpinfo i've the two versions of openssl, but "openssl version" tell me the version installed is "0.9.8a". Bye.
 
Avenueduweb said:
Thanks,

But I have updated with ./build all and don't run so i have tested with ./build apache_mod_ssl and don't run too. I don't know what is the problem. In my phpinfo i've the two versions of openssl, but "openssl version" tell me the version installed is "0.9.8a". Bye.
Click to expand...
u need to update mod_ssl ( the version not to recompile it) ..
Run "./build clean && ./build update && ./build all"

u see 0.9.7a in phpinfo bcz u didnt recompile php after u updated openssl.
 
To be honest its not necessarily a good idea to ruish to using 0.9.8 the 0.9.7 is still been developed.
 
I've re-installed openssl in version 0.9.7i, re-installed openssh, rebuild all and now it's run with the version 0.9.7i. Thank you very much. Bye.
 
Hello,
I've compiled it but apache crashes too, i've decided to install 0.9.7i and its up and stable but:
[root@xk ~]# openssl
OpenSSL> version
OpenSSL 0.9.7i 14 Oct 2005

and

Apache/2.0.55 (Unix) mod_perl/1.99_17-dev Perl/v5.8.5 mod_ssl/2.0.55 OpenSSL/0.9.7a PHP/4.4.0 Server at xk Port 80

I've recompiled modssl and apache, so, why it still appears as 0.9.7a?

Kind Regards,
 
You must log in or register to reply here.
Back
Top