You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@httpd.apache.org by Eddie Reyes <er...@pscomplete.com> on 2015/06/11 23:55:10 UTC

[users@httpd] how to upgrade httpd apache with existing SSL

Hello All,
     Is there a way to upgrade apache to the latest version WITHOUT loosing
your existing SSL cert?



Regards,

Re: [users@httpd] how to upgrade httpd apache with existing SSL

Posted by Yehuda Katz <ye...@ymkatz.net>.

Generally you should use the newest version.
SSL3 is no longer recommended for use at all. It is disabled by default in
some releases and not others.
This site has some good info about SSL cipher orders for the "most secure"
setup: https://weakdh.org/sysadmin.html

- Y

On Thu, Jun 11, 2015 at 7:07 PM, Eddie Reyes <er...@pscomplete.com> wrote:

> Thank you.  Just Wanted to make sure.  Do you know what is the best
> version for a secure site?  or have all the SSL3 holes been fixed?
>
> Regards,
>
> Eduardo "Eddie" Reyes
> Owner/Lead Developer
> PS-Complete
> 209-624-0309
> www.pscomplete.com
>
> On Thu, Jun 11, 2015 at 3:45 PM, Yehuda Katz <ye...@ymkatz.net> wrote:
>
>> Your SSL certificate is part of your configuration, not part of the
>> server itself. Just make sure you don't overwrite the config files
>> (including where ever the SSL config says that the certificate is stored)
>> and you shouldn't lose the certificate.
>>
>> Sent from a gizmo with a very small keyboard and hyperactive autocorrect.
>> On Jun 11, 2015 5:55 PM, "Eddie Reyes" <er...@pscomplete.com> wrote:
>>
>>> Hello All,
>>>      Is there a way to upgrade apache to the latest version WITHOUT
>>> loosing your existing SSL cert?
>>>
>>>
>>>
>>> Regards,
>>>
>>>
>>>
>

RE: [users@httpd] how to upgrade httpd apache with existing SSL

Posted by Shailender Singh <Sh...@allwite.com>.

Thanks Guys really appretiate the response.

Got this working by changing the apache port

Cheers
Shailender

From: Eddie Reyes [mailto:ereyes@pscomplete.com]
Sent: 12 June 2015 00:08
To: users@httpd.apache.org
Subject: Re: [users@httpd] how to upgrade httpd apache with existing SSL

Thank you.  Just Wanted to make sure.  Do you know what is the best version for a secure site?  or have all the SSL3 holes been fixed?

Regards,

Eduardo "Eddie" Reyes
Owner/Lead Developer
PS-Complete
209-624-0309
www.pscomplete.com<http://www.pscomplete.com>

On Thu, Jun 11, 2015 at 3:45 PM, Yehuda Katz <ye...@ymkatz.net>> wrote:

Your SSL certificate is part of your configuration, not part of the server itself. Just make sure you don't overwrite the config files (including where ever the SSL config says that the certificate is stored) and you shouldn't lose the certificate.

Sent from a gizmo with a very small keyboard and hyperactive autocorrect.
On Jun 11, 2015 5:55 PM, "Eddie Reyes" <er...@pscomplete.com>> wrote:
Hello All,
     Is there a way to upgrade apache to the latest version WITHOUT loosing your existing SSL cert?

Regards,

#####################################################################################

The content of this email and any attachment(s) is proprietary to the sender or its
relevant subsidiary or associated companies (collectively "the Companies") from which
it originated and may contain confidential and privileged information. 

Any views or opinions contained in this email or any attachment(s) are the personal 
views and opinions of the sender unless they are clearly and expressly stated to be 
the views and opinions of the business which employs or otherwise engages the sender. 
The use of the sender's name in any suffix used in the email addresses shall in no way
imply that this email was sent by an employee of any other Company or in connection 
with any other Company's business or mean that its content is deemed given relation to
a Company other than company employing or engaging the sender. For the avoidance of 
doubt, each Company assumes no liability for the content of any emails sent by an 
employee of another Company. 

This email is intended only for the person(s) named above. If you have received this 
email in error please contact the sender by return email and immediately delete this
email from your system.  Do not read, print, copy, use or store this email or any 
attachment(s) or disclose, forward or re-transmit this email or any attachment(s) to 
any other person.

#####################################################################################

Re: [users@httpd] how to upgrade httpd apache with existing SSL

Posted by Eddie Reyes <er...@pscomplete.com>.

Thank you.  Just Wanted to make sure.  Do you know what is the best version
for a secure site?  or have all the SSL3 holes been fixed?

Regards,

Eduardo "Eddie" Reyes
Owner/Lead Developer
PS-Complete
209-624-0309
www.pscomplete.com

On Thu, Jun 11, 2015 at 3:45 PM, Yehuda Katz <ye...@ymkatz.net> wrote:

> Your SSL certificate is part of your configuration, not part of the server
> itself. Just make sure you don't overwrite the config files (including
> where ever the SSL config says that the certificate is stored) and you
> shouldn't lose the certificate.
>
> Sent from a gizmo with a very small keyboard and hyperactive autocorrect.
> On Jun 11, 2015 5:55 PM, "Eddie Reyes" <er...@pscomplete.com> wrote:
>
>> Hello All,
>>      Is there a way to upgrade apache to the latest version WITHOUT
>> loosing your existing SSL cert?
>>
>>
>>
>> Regards,
>>
>>
>>

Re: [users@httpd] how to upgrade httpd apache with existing SSL

Posted by Yehuda Katz <ye...@ymkatz.net>.

Your SSL certificate is part of your configuration, not part of the server
itself. Just make sure you don't overwrite the config files (including
where ever the SSL config says that the certificate is stored) and you
shouldn't lose the certificate.

Sent from a gizmo with a very small keyboard and hyperactive autocorrect.
On Jun 11, 2015 5:55 PM, "Eddie Reyes" <er...@pscomplete.com> wrote:

> Hello All,
>      Is there a way to upgrade apache to the latest version WITHOUT
> loosing your existing SSL cert?
>
>
>
> Regards,
>
>
>