Quantcast

[OT] anyone have experience getting TLS 1.2 running ?

classic Classic list List threaded Threaded
2 messages Options
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

[OT] anyone have experience getting TLS 1.2 running ?

Tami Williams-3
Anyone have experience getting TLS 1.2 running on Mac OS 10.8.5 (not running  Mac OS server software)?

Or getting TLS 1.2 running on any kind of Mac OS?

Or any OS?

My client has a Lasso 8.5 site running on Mac OS 10.8.5 but it looks like there is no way to get TLS 1.2 to run in Apache 2.2 on the Mac.


Since TLS 1.2 is a must - any hardware/software recommendations? Must run Lasso 8.5 as well.

Anyone gotten this to work?


Thanks in advance.




#############################################################

This message is sent to you because you are subscribed to
  the mailing list Lasso [hidden email]
Official list archives available at http://www.lassotalk.com
To unsubscribe, E-mail to: <[hidden email]>
Send administrative queries to  <[hidden email]>
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Re: [OT] anyone have experience getting TLS 1.2 running ?

Wade Maxfield
> On 24/08/2016, at 6:14 PM, Tami Williams <[hidden email]> wrote:
>
> Anyone have experience getting TLS 1.2 running on Mac OS 10.8.5 (not running  Mac OS server software)?
>
> Or getting TLS 1.2 running on any kind of Mac OS?
>
> Or any OS?
>
> My client has a Lasso 8.5 site running on Mac OS 10.8.5 but it looks like there is no way to get TLS 1.2 to run in Apache 2.2 on the Mac.
>
>
> Since TLS 1.2 is a must - any hardware/software recommendations? Must run Lasso 8.5 as well.
>
> Anyone gotten this to work?


I’m in the process of doing all this on OS X 10.10.5.

OS X 10.8 and 10.10 come with openssl 0.9.8zg which does not support TLS 1.2.  To get a newer version of openssl I installed it via Homebrew. I also installed apache 2.4 (2.4.18) via Homebrew while I was at it.  

Homebrew requires OS X 10.9 or later, but 10.8.5 can be used but some bits/formulae might not work.

Using the mod_ssl that came with the Homebrew version of apache 2.4 didn’t pass the Qualys SSL Labs test for TLS 1.2, so I downloaded the source for apache 2.4.18 and compiled mod_ssl (against the homebrew version of openssl 1.0.2h_1).  This now passes the TLS1.2 test, overall score of A.
I had to manually install the Lasso Connector for apache 2.4 to get Lasso 8.5.6 working.

So it should be doable on the hardware you have, although you don’t state what it is.

 - Wade


#############################################################

This message is sent to you because you are subscribed to
  the mailing list Lasso [hidden email]
Official list archives available at http://www.lassotalk.com
To unsubscribe, E-mail to: <[hidden email]>
Send administrative queries to  <[hidden email]>
Loading...