OpenSSL Version issue


I installed a new SSL cert and ran a check on it. A couple issues popped up.

SSL Version
I had to exclude SSLv3

I am running openssl 1.0.1e-42.el6_7.1 and some dev libraries. The security check indicates that this is an old version. Shouldn’t we be using the latest version, to be safe?

Looks like we should be in vQ!

Also V1.02 is available.

CentOS backports security fixes which is something those security checks don’t look for. Disabling SSLv3 is standard no matter what version of openssl you have or operating system, so that is normal due to poodle as it is a protocol vulnerability