The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

'openssl', version '1.0.1e', is out of date, and possibly a security risk.

Discussion in 'General Discussion' started by postcd, Nov 19, 2015.

  1. postcd

    postcd Well-Known Member

    Joined:
    Oct 22, 2010
    Messages:
    648
    Likes Received:
    11
    Trophy Points:
    68
    Hello,

    i have CentOS 6.7 and cpanel on it.

    from rkhunter i got this warning:

    Warning: Application 'openssl', version '1.0.1e', is out of date, and possibly a security risk.

    # openssl version
    OpenSSL 1.0.1e-fips 11 Feb 2013

    WHM 11.52.0 (build 22)

    How should i safely fix it while not reducing functionality & security of the SSL on the server?
     
    #1 postcd, Nov 19, 2015
  2. cotswoldphoto

    cotswoldphoto Active Member

    Joined:
    Feb 20, 2015
    Messages:
    25
    Likes Received:
    3
    Trophy Points:
    3
    cPanel Access Level:
    Root Administrator
    I would read this:

    Rkhunter reports openssl warning

    I tend to test my site using the SSL Server Test (Powered by Qualys SSL Labs) test suite, although I DO add my own custom Pre Main Include to alter the cipher suites, like this:

    Home » Service Configuration » Apache Configuration » Include Editor » Pre Main Include » All versions

    In the Global Box delete what is there and paste this:

    Code:
    SSLProtocol -All +TLSv1 +TLSv1.1 +TLSv1.2
SSLHonorCipherOrder On
SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS
    It is possible that this needs updating for newer standards (please advise me if it does), but it works for me.
     
    #2 cotswoldphoto, Nov 22, 2015
  3. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    36,294
    Likes Received:
    1,209
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    #3 cPanelMichael, Nov 23, 2015
(You must log in or sign up to post here.)
Loading...
Similar Threads - 'openssl' version date
  1. DEZCOOL

    Move website from older version of cPanel Question

    DEZCOOL, Jul 19, 2017 at 4:41 PM, in forum: General Discussion
    Replies:
    1
    Views:
    36
    cPanelMichael
    Jul 20, 2017 at 8:17 AM
  2. gwc_wd

    EasyApache Default PHP - are prior versions needed

    gwc_wd, Jul 17, 2017 at 6:22 PM, in forum: EasyApache
    Replies:
    1
    Views:
    50
    Infopro
    Jul 17, 2017 at 8:00 PM
  3. arjanvr

    Question about updating PHP version

    arjanvr, Jul 15, 2017, in forum: General Discussion
    Replies:
    1
    Views:
    62
    cPanelMichael
    Jul 17, 2017 at 2:18 PM
  4. ljj3

    SOLVED error during the cPanel & WHM version change from “11.64.0.30” to “11.64.0.31”

    ljj3, Jul 13, 2017, in forum: General Discussion
    Replies:
    3
    Views:
    63
    cPanelMichael
    Jul 13, 2017
  5. Milance

    Configured PHP version ea-php70 does not have a CGI binary installed

    Milance, Jul 13, 2017, in forum: CloudLinux
    Replies:
    16
    Views:
    567
    cPanelMichael
    Jul 18, 2017 at 12:38 PM

Share This Page