# tar -zxvf openssl-1.1.1-pre8.tar.gz# cd openssl-1.1.1-pre8#指定安装目录、配置文件目录# ./config shared zlib --prefix=/usr/local/openssl-1.1.1-pre8 --openssldir=/usr/local/openssl-1.1.1-pre8/ssl#显示安装信息# perl configdata.pm --dump# make# make test # make install
cd /usr/local/openssl-1.1.1-pre8/bin
查看版本:
./openssl version
报错:
./openssl: error while loading shared libraries: libssl.so.1.1: cannot openshared object file: No such fileor directory
原因:
未找到对应的库文件
解决办法:
查看新版本openssl执行文件关联的动态库
ldd openssl
显示有2个not found
libssl.so.1.1 =>not found
libcrypto.so.1.1 =>not found
关联新的库文件
# cd /etc/ld.so.conf.d/# vi openssl-1.1.1-pre8.conf
/usr/local/openssl-1.1.1-pre8/lib
再执行ldd openssl 显示OK
升级Openssl后重新编译nginx 修复漏洞CVE-2016-2183
查看当前nginx信息
# nginx -V
nginx version: nginx/1.13.12
built by gcc 4.4.720120313 (Red Hat 4.4.7-18) (GCC)
built with OpenSSL 1.0.1e-fips 11 Feb 2013
OpenSSL当前使用版本为1.0.1e-fips 11 Feb 2013
系统:CentOS Linux release 7.3.1611 (Core)旧版本openssl:OpenSSL 1.0.1e-fips 11 Feb 2013下载最新版: https://www.openssl.org/source/安装# tar -zxvf openssl-1.1.1-pre8.tar.gz# cd openssl-1.1.1-pre8#指...