/ Register

Want to subscribe to topics you're interested in?
Become a Member

Security OpenSSL OpenSSL 1.1.0c Security Release

Discussion in 'CentOS, Redhat & Oracle Linux News' started by eva2000, Nov 10, 2016.

Tags:
Previous Thread Next Thread
Loading...
  1. Nov 10, 2016 #1
    eva2000

    eva2000 Administrator Staff Member

    55,158
    12,249
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,825
    Local Time:
    7:01 AM
    Nginx 1.27.x
    MariaDB 10.x/11.4+
    OpenSSL 1.1.0c security release is due in less than 24hrs on November 10th, 2016 1200-1600 UTC time. Centmin Mod uses LibreSSL 2.4 branch by default with option to switch to OpenSSL 1.0.2 branch (1.0.2j latest) via persistent /etc/centminmod/custom_config.inc set LIBRESSL_SWITCH='y' variable and recompile of nginx via centmin.sh menu option 4.

    The OpenSSL 1.1 branch is only optionally supported by Centmin Mod 123.09beta01 by setting in the persistent /etc/centminmod/custom_config.inc the variables:
    Code (Text):
    LIBRESSL_SWITCH='y'
OPENSSL_VERSION='1.1.0c'
ORESTY_LUANGINX='n'

    and recompile of nginx via centmin.sh menu option 4. Note ORESTY_LUANGINX='n' is needed as current OpenSSL 1.1 branch is not compatible with OpenResty Nginx Lua module which is the main reason why Centmin Mod 123.09beta01 defaults to OpenSSL 1.0.2 branch for Nginx Lua module compatibility.

    [openssl-announce] Forthcoming OpenSSL release
     
Previous Thread Next Thread
Loading...

.