centos7老版本漏洞,升级openssl到1.1.1版本

都是历史问题了,爆了好多的漏洞,另外http3也不支持,需要升级openssl,命令记录如下:

yum update
yum install wget tar make gcc perl pcre-devel zlib-devel
下载OpenSSL源码安装包:
wget https://www.openssl.org/source/openssl-1.1.1g.tar.gz
tar zxvf openssl-1.1.1g.tar.gz
cd openssl-1.1.1
编译安装:
./config --prefix=/usr --openssldir=/etc/ssl --libdir=lib no-shared zlib-dynamic
make
make install

配置环境变量:
export LD_LIBRARY_PATH=/usr/local/lib:/usr/local/lib64
echo "export LD_LIBRARY_PATH=/usr/local/lib:/usr/local/lib64" >> ~/.bashrc

查看OpenSSL版本,执行命令:openssl version
显示为OpenSSL 1.1.1
滚动至顶部