RHEL BasedRocky Linux

How To Install OpenSSL on Rocky Linux 9

r00t

Install OpenSSL on Rocky Linux 9

In this tutorial, we will show you how to install OpenSSL on Rocky Linux 9. OpenSSL is a robust, full-featured toolkit for general-purpose cryptography and secure communication over computer networks. It is widely used to secure web traffic, encrypt data, and manage certificates. Installing the latest version of OpenSSL on Rocky Linux 9 is crucial for maintaining the security and integrity of your applications. This guide will provide a comprehensive step-by-step approach to installing OpenSSL, ensuring you can set it up correctly and efficiently.

Understanding OpenSSL and Its Versions

OpenSSL serves as a foundational library for implementing the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols. It provides a variety of cryptographic functions, including encryption, decryption, and certificate management. The toolkit has evolved over time, with major versions being released that include significant improvements and security enhancements.

Currently, OpenSSL 1.x and 3.x are the primary versions in use. OpenSSL 3.x introduces a new API, improved performance, and enhanced security features compared to its predecessor. It is essential to use the latest version to benefit from these advancements and ensure optimal security for your applications.

Prerequisites for Installation

Before installing OpenSSL on Rocky Linux 9, ensure that your system meets the following prerequisites:

  • System Requirements: A functioning installation of Rocky Linux 9.
  • Root Access: You will need root or sudo privileges to install software packages.
  • Dependencies: Certain development tools and libraries must be installed prior to installing OpenSSL.

Updating Your System

Keeping your system updated is vital for security and stability. Start by updating your package manager to ensure all existing packages are current. Use the following command:

sudo dnf update

This command will refresh the package index and install any available updates. After the update process completes, you are ready to proceed with the installation of dependencies.

Installing Dependencies

OpenSSL requires several development tools and libraries to compile successfully. Install these dependencies using the following commands:

sudo dnf groupinstall "Development Tools"
sudo dnf install zlib-devel make gcc perl

The first command installs a group of essential development tools, while the second command installs specific libraries that OpenSSL relies on:

  • zlib-devel: Required for compression support.
  • make: A build automation tool that helps compile software.
  • gcc: The GNU Compiler Collection used for compiling code.
  • perl: A scripting language needed for some build scripts.

Downloading OpenSSL Source Code

The next step involves downloading the latest source code for OpenSSL. Visit the official OpenSSL website or use the following command to download it directly from the terminal:

wget https://github.com/openssl/openssl/releases/download/openssl-3.4.0/openssl-3.4.0.tar.gz

This command retrieves the specified version of OpenSSL (in this case, version 3.0.8). Ensure you are in a directory where you have write permissions before executing this command.

Compiling and Installing OpenSSL

With the source code downloaded, it’s time to compile and install OpenSSL. Follow these detailed steps:

Extract the downloaded archive:

tar -xf openssl-3.4.0.tar.gz

Navigating into the extracted directory:

cd openssl-3.4.0

Configure the build options:

This step prepares the compilation process by setting various options such as installation directories and enabling shared libraries:

./config --prefix=/usr/local/openssl --openssldir=/usr/local/openssl shared zlib

Compile the source code:

This command compiles OpenSSL based on the configuration settings provided in the previous step:

make

Install OpenSSL:

This command installs OpenSSL onto your system:

sudo make install

Create symbolic links (optional):

If you want to ensure that your system uses this version of OpenSSL by default, create symbolic links in standard directories:

sudo ln -s /usr/local/openssl/bin/openssl /usr/bin/openssl

Configuring Environment Variables

A crucial step after installation is configuring environment variables so that your system recognizes where to find OpenSSL binaries and libraries. Update your PATH variable by adding the following line to your .bashrc file:

echo 'export PATH=/usr/local/openssl/bin:$PATH' >> ~/.bashrc

This command appends a line to your .bashrc file, which sets up your environment each time you log in or open a new terminal session. After editing .bashrc, apply changes using:

source ~/.bashrc

Validating the Installation

The final step is to verify that OpenSSL has been installed correctly. Use this command to check the version of OpenSSL installed on your system:

openssl version -a

You should see output indicating the version number along with configuration details if everything was successful. If you encounter any errors at this stage, double-check previous steps for any missed commands or typos.

Troubleshooting Common Issues

If you face issues during installation or when running commands post-installation, consider these common troubleshooting tips:

  • Error: Command not found: This usually indicates that either OpenSSL was not installed correctly or that environment variables were not set properly. Verify installation steps and check your PATH variable.
  • Error: Missing dependencies: If certain libraries are missing during compilation, ensure all required packages were installed as mentioned earlier.
  • Error: Permission denied: Ensure you are using sudo when executing commands that require administrative privileges.
  • Error: Configuration failed: Review any error messages during configuration; they often indicate what went wrong (e.g., missing dependencies).

Congratulations! You have successfully installed OpenSSL. Thanks for using this tutorial for installing the OpenSSL on Rocky Linux 9 system. For additional help or useful information, we recommend you check the OpenSSL website.

VPS Manage Service Offer
If you don’t have time to do all of this stuff, or if this is not your area of expertise, we offer a service to do “VPS Manage Service Offer”, starting from $10 (Paypal payment). Please contact us to get the best deal!
Tags
r00t
Photo of r00t

r00t

r00t is an experienced Linux enthusiast and technical writer with a passion for open-source software. With years of hands-on experience in various Linux distributions, r00t has developed a deep understanding of the Linux ecosystem and its powerful tools. He holds certifications in SCE and has contributed to several open-source projects. r00t is dedicated to sharing her knowledge and expertise through well-researched and informative articles, helping others navigate the world of Linux with confidence.
Copyright © 2024 idroot.us | All Rights Reserved.
Back to top button