I have a need to run FreeRadius 3.0.12 on OpenSUSE 13.2.
FreeRadius refuses to run due to outdated openssl.
"Refusing to start with libssl version OpenSSL 1.0.1k-fips 8 Jan 2015 0x100010bf (1.0.1k release)
(in range 1.0.1 release - 1.0.1t rele)
Security advisory CVE-2016-6304 (OCSP status request extension)
For more information see https://www.openssl.org/news/secadv/20160922.txt
Once you have verified ;obssl has been correctly patched, set security.allow_vulnerable_openssl = ‘CVE-2016-6304’
I am unable to find an rpm for openssl 1.0.1u for OpenSUSE which seems to be the latest. In fact, it appears all SUSE variants
even commercial releases do not fulfill the requirements for FreeRadius nor are there any rpms for updating it.
Is there a way to build one for 13.2 via OBS or something? I have no experience with that. I can compile openssl from
scratch but I don’t want to end up with a broken system going forward.
Or if someone knows of a distro shipping the latest updated openssl that will work with FreeRadius I am all ears.
I downloaded from freeradius.org and compiled from source.
Yes the config files from the compiled version versus what ships with opensuse contain references to different directories.