Quantcast

Maximum PC

It is currently Tue Nov 25, 2014 9:31 pm

All times are UTC - 8 hours




Post new topic Reply to topic  [ 6 posts ] 
Author Message
 Post subject: updating SSL via SSH login to server
PostPosted: Thu Dec 10, 2009 11:49 am 
Team Member Top 250
Team Member Top 250
User avatar

Joined: Tue Apr 15, 2008 8:01 pm
Posts: 1260
I'm still a noob to Apache and i'm trying to update the SSH on our webserver to disable SSLv2 and only use SSLv3.

So i connect to the root user via putty

type OpenSSL: SSLProtocal -All +SSLv3 +TLSv1

and....

-bash: OpenSSL:: command not found

What am i doing wrong?


Last edited by nekollx on Fri Dec 11, 2009 10:22 am, edited 1 time in total.

Top
  Profile  
 
 Post subject:
PostPosted: Fri Dec 11, 2009 10:16 am 
Monkey Federation (Top 10)*
Monkey Federation (Top 10)*
User avatar

Joined: Sun May 22, 2005 8:28 am
Posts: 3673
Location: The Blue Nowhere
openssl is case sensitive first of all and second the command may not be in your path depending on the method used to acquire the root login.

I would login as root and run
Code:
locate openssl | more
to find the location of the binary. Then adjust your command to include the full path to openssl.

On my server it is located in /usr/bin/openssl


Top
  Profile  
 
 Post subject:
PostPosted: Fri Dec 11, 2009 10:18 am 
Monkey Federation (Top 10)*
Monkey Federation (Top 10)*
User avatar

Joined: Sun May 22, 2005 8:28 am
Posts: 3673
Location: The Blue Nowhere
Lodis4 wrote:
openssl is case sensitive first of all and second the command may not be in your path depending on the method used to acquire the root login.

I would login as root and run
Code:
locate openssl | more
to find the location of the binary. Then adjust your command to include the full path to openssl.

On my server it is located in /usr/bin/openssl



And please edit the subject line, and the first line of the OP, to correctly reflect what we are talking about here. SSH is a secure shell environment where SSL is Secure Sockets Layer; the two are not even remotely related.


Top
  Profile  
 
 Post subject:
PostPosted: Fri Dec 11, 2009 10:20 am 
Team Member Top 250
Team Member Top 250
User avatar

Joined: Tue Apr 15, 2008 8:01 pm
Posts: 1260
Lodis4 wrote:
openssl is case sensitive first of all and second the command may not be in your path depending on the method used to acquire the root login.

I would login as root and run
Code:
locate openssl | more
to find the location of the binary. Then adjust your command to include the full path to openssl.

On my server it is located in /usr/bin/openssl


[root@.......]# locate openSSL | more
-bash: locate: command not found


Top
  Profile  
 
 Post subject:
PostPosted: Fri Dec 11, 2009 11:58 am 
Million Club - 5 Plus*
Million Club - 5 Plus*
User avatar

Joined: Sun Sep 12, 2004 6:37 pm
Posts: 4745
Location: In the monkey's litterbox
I think that you're looking to edit the apache configuration file instead of using openssl.


In my /etc/httpd/conf/httpd.conf I have these lines:
Code:
SSLProtocol +all -SSLv2
SSLCipherSuite HIGH:MEDIUM


Top
  Profile  
 
 Post subject:
PostPosted: Wed Dec 16, 2009 12:23 pm 
Team Member Top 250
Team Member Top 250
User avatar

Joined: Tue Apr 15, 2008 8:01 pm
Posts: 1260
Thanks, we ultimatly went with a shared host who is already PCI complaint then try and master Apache.


Top
  Profile  
 
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 6 posts ] 

All times are UTC - 8 hours


Who is online

Users browsing this forum: No registered users and 4 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group

© 2014 Future US, Inc. All rights reserved.