On 23 Dec 2014, at 11:35, Nair, Suraj <suranair@amazon.com> wrote:
On 2.2.6, I got another error, something similar to this: Refusing to start with libssl version OpenSSL 1.0.1e-fips 11 Feb 2013 (in range 1.0.1 - 1.0.1f). Security advisory CVE-2014-0160 (Heartbleed) And I was told that rolling back to an older version should solve the problem.
Version 2.2.6 actually TELLS you what you should have switched on for it to function. Rolling back to 2.1.12 might avoid the 'not starting' problem, but it does not resolve the actual problem. Switch to 2.2.6. Then set the 'allow_vulnerable_openssl' flag to the CVE it tells you to. The server will start ok. Stefan Paetow Moonshot Industry & Research Liaison Coordinator t: +44 (0)1235 822 125 gpg: 0x3FCE5142 xmpp: stefanp@jabber.dev.ja.net skype: stefan.paetow.janet Lumen House, Library Avenue, Harwell Oxford, Didcot, OX11 0SG jisc.ac.uk Jisc is a registered charity (number 1149740) and a company limited by guarantee which is registered in England under Company No. 5747339, VAT No. GB 197 0632 86. Jisc’s registered office is: One Castlepark, Tower Hill, Bristol, BS2 0JA. T 0203 697 5800. Jisc Collections and Janet Ltd. is a wholly owned Jisc subsidiary and a company limited by guarantee which is registered in England under Company No. number 2881024, VAT No. GB 197 0632 86. The registered office is: Lumen House, Library Avenue, Harwell, Didcot, Oxfordshire, OX11 0SG. T 01235 822200.