Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

'openssl', version '1.0.1e', is out of date, and possibly a security risk.

Discussion in 'General Discussion' started by postcd, Nov 19, 2015.

  1. postcd

    postcd Well-Known Member

    Joined:
    Oct 22, 2010
    Messages:
    694
    Likes Received:
    15
    Trophy Points:
    68
    Hello,

    i have CentOS 6.7 and cpanel on it.

    from rkhunter i got this warning:

    Warning: Application 'openssl', version '1.0.1e', is out of date, and possibly a security risk.

    # openssl version
    OpenSSL 1.0.1e-fips 11 Feb 2013

    WHM 11.52.0 (build 22)

    How should i safely fix it while not reducing functionality & security of the SSL on the server?
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #1 postcd, Nov 19, 2015
  2. cotswoldphoto

    cotswoldphoto Active Member

    Joined:
    Feb 20, 2015
    Messages:
    25
    Likes Received:
    3
    Trophy Points:
    3
    cPanel Access Level:
    Root Administrator
    I would read this:

    Rkhunter reports openssl warning

    I tend to test my site using the SSL Server Test (Powered by Qualys SSL Labs) test suite, although I DO add my own custom Pre Main Include to alter the cipher suites, like this:

    Home » Service Configuration » Apache Configuration » Include Editor » Pre Main Include » All versions

    In the Global Box delete what is there and paste this:

    Code:
    SSLProtocol -All +TLSv1 +TLSv1.1 +TLSv1.2
SSLHonorCipherOrder On
SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS
    It is possible that this needs updating for newer standards (please advise me if it does), but it works for me.
     
    #2 cotswoldphoto, Nov 22, 2015
  3. cPanelMichael

    cPanelMichael Technical Support Community Manager
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    45,266
    Likes Received:
    1,942
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Twitter:
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #3 cPanelMichael, Nov 23, 2015
(You must log in or sign up to post here.)
Loading...
Similar Threads - 'openssl' version date
  1. ags-hcs

    Cannot determine your distribution's major version error

    ags-hcs, Nov 20, 2018 at 8:32 PM, in forum: General Discussion
    Replies:
    3
    Views:
    45
    Infopro
    Nov 21, 2018 at 4:30 AM
  2. net@work

    Error: Multilib version problems found.

    net@work, Nov 15, 2018, in forum: EasyApache
    Replies:
    7
    Views:
    1,038
    cPanelLauren
    Nov 20, 2018 at 8:07 AM
  3. Oualid

    Install PHP version 5.3.10?

    Oualid, Nov 10, 2018, in forum: EasyApache
    Replies:
    2
    Views:
    97
    cPanelMichael
    Nov 12, 2018
  4. Tipiford

    Need specific version of cPanel

    Tipiford, Nov 8, 2018, in forum: General Discussion
    Replies:
    6
    Views:
    137
    rpvw
    Nov 12, 2018
  5. Islandhosting

    In Progress Plugins stop working after upgrade to cPanel & WHM version 76

    Islandhosting, Nov 7, 2018, in forum: cPanel Developers
    Replies:
    7
    Views:
    634
    cPanelMichael
    Nov 13, 2018

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice