[OFF] Upgrading openssl on Mac El Capitan Server

classic Classic list List threaded Threaded
2 messages Options
Reply | Threaded
Open this post in threaded view
|

[OFF] Upgrading openssl on Mac El Capitan Server

Perkins, Bradley D
Because some of us are more likely run Web Server's on MacOS X...

We run Active4D behind Apache using https. Apple has deprecated openssl and won't upgrade it. The latest version 0.9.8zg might be 'secure' but in the eyes of our institutional cybersecurity is unsupported and thus vulnerable. I've already been blocked because of this and have an exception until I can get this fixed.

My only solution appears to build and install a newer supported version of openssl, or possibly install it with homebrew. The cybersecurity team noted that "Apple suggests using CommonCrypto instead of OpenSSL", but I've yet to find if or how that plays in to running a secure web server.

Have any of you dealt with this issue, and if so were their any gotchas?

-- Brad


_______________________________________________
Active4D-dev mailing list
[hidden email]
http://list.aparajitaworld.com/listinfo/active4d-dev
Archives: http://active4d-nabble.aparajitaworld.com/
Reply | Threaded
Open this post in threaded view
|

Re: [OFF] Upgrading openssl on Mac El Capitan Server

Aparajita Fishman
> My only solution appears to build and install a newer supported version of openssl, or possibly install it with homebrew.

homebrew would be the easiest way.

Regards,

   - Aparajita

_______________________________________________
Active4D-dev mailing list
[hidden email]
http://list.aparajitaworld.com/listinfo/active4d-dev
Archives: http://active4d-nabble.aparajitaworld.com/