There is a security hole in the prior OpenSSL versions, so you can upgrade OpenSSL by doing the following set of commands in shell:

openssl version

Most should be 0.9.7a. If you find a different version such as 0.9.8, please e-mail your web host to ask a system admin what to do.

mkdir /root/setup && cd /root/setup wget http://www.openssl.org/source/openssl-0.9.7k.tar.gz tar -xvzf openssl-0.9.7k.tar.gz cd openssl* ./config make make install

For ./config, make and make install commands, allow the command to process and complete prior to going onto the next command.

/etc/init.d/httpd stop killall -9 httpd /etc/init.d/httpd startssl

Browse to a secure page on the server to test other than cPanel or WHM (provided you have any secure pages using https).

vi /etc/yum.conf

Edit the exclude line to encompass openssl so it isn’t overwritten by the old version by doing Esc+i keys:

exclude=mod_ssl* httpd* perl mysql* php* spamassassin* kernel* exim* courier* apache* openssl*

Your listing order might differ, the only important thing is basically adding the openssl* at the end of the exclude= line as the above example shows. You wouldn’t remove or add any other ones not already in the exclude line.

Save the file (:wq in vi). You are done!

More Dedicated Web Hosting Help!

• Moving from Shared to Dedicated Hosting
• Setting up Private Nameserver with Cpanel
• Making the Case for Dedicated Hosting
• Modifying an Account in WHM on Your Dedicated Server
• What is a Dedicated Server CPU?
• A Super Saver, New Dedicated Offer from Lunarpages!
• Hardware Failure Q and A
• How to Install Nano Editor on a Dedicated Hosting Account
• Disaster Recovery Help with your Dedicated Server
• When is it Time to Go Dedicated?