목록OpenSSL (9)
변군이글루

OpenSSL 최신 버전으로 업그레이드 CentOS 7 OpenSSL 지원 프로토콜 확인 $ cat /etc/redhat-release CentOS Linux release 7.9.2009 (Core) $ openssl version OpenSSL 1.0.2k-fips 26 Jan 2017 $ openssl ciphers -v | awk '{print $2}' | sort | uniq SSLv3 TLSv1.2 OpenSSL 삭제 $ yum remove openssl 기본 라이브러리 설치 $ yum install gcc gcc-c++ pcre-devel zlib-devel perl wget OpenSSL Downloads https://www.openssl.org/source/ 소스 컴파일 설치 $ wge..

사설인증서(SSL) 생성 KEY 생성 openssl genrsa -out server.key 2048 root@2d2140e1fcb9:/usr/local/apache2/logs# openssl genrsa -out server.key 2048 Generating RSA private key, 2048 bit long modulus (2 primes) ........................+++++ ............+++++ e is 65537 (0x010001) CSR 생성 openssl req -new -key server.key -out server.csr ----- Country Name (2 letter code) [AU]:KR State or Province Name (full nam..

OpenSSL로 연결 확인OpenSSL로 TLS 연결 테스트 echo | openssl s_client -connect [site:443] -tls1_2 -state $ echo | openssl s_client -connect www.sangchul.kr:443 -tls1_2 -state ... --- No client certificate CA names sent Peer signing digest: SHA512 Peer signature type: RSA Server Temp Key: ECDH, P-256, 256 bits --- SSL handshake has read 4746 bytes and written 344 bytes Verification error: unable to get local..

OpenSSL 최신 버전으로 업그레이드 OpenSSL Downloads https://www-openssl-openssl-org/source/ 현재 버전 $ openssl version OpenSSL 1.0.2k-fips 26 Jan 2017 ###공유 라이브러리 $ ldd /usr/bin/openssl linux-vdso.so.1 => (0x00007fffc2b5f000) libssl.so.10 => /lib64/libssl.so.10 (0x00007fb7c9aa8000) libgssapi_krb5.so.2 => /lib64/libgssapi_krb5.so.2 (0x00007fb7c985b000) libkrb5.so.3 => /lib64/libkrb5.so.3 (0x00007fb7c9572000) li..