Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

This system is running an outdated version of OpenSSL

Discussion in 'General Discussion' started by Felipe Fernandez, Apr 21, 2019.

  1. Felipe Fernandez

    Felipe Fernandez Registered

    Joined:
    Apr 21, 2019
    Messages:
    1
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    Spain
    cPanel Access Level:
    Root Administrator
    Cpanel
    • CENTOS 7.4 xen enterprise hvm
    • v76.0.20
    • OpenSSL 1.0.2k-fips 26 Jan 2017
    Still see this warning
    Blockers are conditions that do not allow cPanel & WHM to upgrade to a particular version. For more information, read our documentation.


    Severity
    Blocker Message
    FATAL This system is running an outdated version of OpenSSL (1.0.1e), which will need to be updated to at least 1.0.2e to continue.

    [root@ ... ~]# yum -y update
    Loaded plugins: fastestmirror, universal-hooks
    Loading mirror speeds from cached hostfile
    * EA4: 70.87.220.252
    * cpanel-addons-production-feed: 70.87.220.252
    * epel: fedora-epel.mirror.lstn.net
    No packages marked for update


    How I fix the FATAL error ?'

    Thanks
     
    #1 Felipe Fernandez, Apr 21, 2019
    Last edited by a moderator: Apr 21, 2019
  2. GOT

    GOT Get Proactive! PartnerNOC

    Joined:
    Apr 8, 2003
    Messages:
    1,370
    Likes Received:
    154
    Trophy Points:
    193
    Location:
    Chesapeake, VA
    cPanel Access Level:
    DataCenter Provider
    Something is definitely up with your yum. The latest is 7.6.1810.

    Try running yum clean all then yum update
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  3. dalem

    dalem Well-Known Member PartnerNOC

    Joined:
    Oct 24, 2003
    Messages:
    2,885
    Likes Received:
    120
    Trophy Points:
    368
    Location:
    SLC
    cPanel Access Level:
    DataCenter Provider
    & that does not work see if you have ssl listed in your exclude file
    /etc/yum.conf
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  4. cPanelLauren

    cPanelLauren Forums Analyst II Staff Member

    Joined:
    Nov 14, 2017
    Messages:
    5,815
    Likes Received:
    443
    Trophy Points:
    233
    Location:
    Houston
    cPanel Access Level:
    DataCenter Provider
    Both of these are good suggestions, I'll wait for the output of these before requesting anything further.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  5. mommaroodle

    mommaroodle Registered

    Joined:
    Nov 27, 2018
    Messages:
    1
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    South Africa
    cPanel Access Level:
    Root Administrator
    I really cant understand why support for TLSv1.3 is not implemented already!

    The cPanel documentation states that cPanel uses the OpenSSL version that comes with the operating system. So if one had to manually upgrade and install OpenSSL v1.1.1b, it should only be a matter of setting the SSL protocol and cipher suites and maybe any other adjustment and it should work.

    I have Centos 7.6 and have installed OpenSSLv1.1.1b - now the only thing that I seem to be battling with the entries - the correct ssl protocols in order for support for v1.2 and 1.3 and then the cipher suites and as I said any other directives which is necessary.

    So there must be a way now to be able to get this to work. There is 7 months left before there is no more support for the current default version.

    According to OpenSSL.org they state the following:

    This year is the last year of support!!
     
    #5 mommaroodle, Apr 28, 2019
    Last edited by a moderator: Apr 28, 2019
  6. cPanelLauren

    cPanelLauren Forums Analyst II Staff Member

    Joined:
    Nov 14, 2017
    Messages:
    5,815
    Likes Received:
    443
    Trophy Points:
    233
    Location:
    Houston
    cPanel Access Level:
    DataCenter Provider
    Hello @mommaroodle

    There is an open feature request here: Add Support for TLS 1.3 for this. I would encourage you to voice your concerns there and become a part of that discussion as well as vote on the feature.
    Thanks!
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
Loading...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice