# yum info openssl
# openssl version
https://www.openssl.org/source/
/source/index.html
The master sources are maintained in our git repository, which is accessible over the network and cloned on GitHub, at https://github.com/openssl/openssl. Bugs and pull patches (issues and pull requests) should be filed on the GitHub repo. Please familiari
www.openssl.org
Open SSL 1.1.1.k 버전 tar 압축 파일 다운로드하여 ftp 프로그램 이용하여 OS 보안 패치할 서버 /tmp 경로에 복사
# cd /tmp
# mkdir os_patche
# mv openssl-1.1.1k.tar.gz /tmp/os_patche
# cd /tmp/os_patche
# tar -xvf openssl-1.1.1k.tar.gz
# cd /openssl-1.1.1k
# ls
# ./config --prefix=/usr/local/ssl --openssldir=/usr/local/ssl shared
* 명령어 실행 시 You need Perl 5. 메시지 발생 시 아래 명령어 실행
# yum install perl -y
# ./config --prefix=/usr/local/ssl --openssldir=/usr/local/ssl shared
# make && make install
# mv /usr/bin/openssl /usr/bin/openssl-1.0.2k
# ln -s /usr/local/ssl/bin/openssl /usr/bin/openssl
# echo '/usr/local/ssl/lib' > /etc/ld.so.conf.d/openssl-1.1.1k.conf
# ldconfig -v
# echo 'OPENSSL_PATH= "/usr/local/ssl/bin"' > /etc/profile.d/openssl.sh
# echo 'export OPENSSL_PATH' >> /etc/profile.d/openssl.sh
# echo 'PATH=$PATH:$OPENSSL_PATH' >> /etc/profile.d/openssl.sh
# echo 'export PATH' >> /etc/profile.d/openssl.sh
# chmod +x /etc/profile.d/openssl.sh
# source /etc/profile.d/openssl.sh
# openssl version
# echo $PATH
# which openssl
# openssl version -a
참고 링크
'Cent OS 취약점 패치' 카테고리의 다른 글
| [Cent OS] bash 5.0 OS 취약점 보안 패치 (0) | 2021.06.02 |
|---|