A new updated openssl package within CentOS 6 ELS has been scheduled for gradual rollout from our production repository.
Rollout slot: 4
Rolled out to: 0.1%
ETA for 100% rollout: October 7
- Enable X509_V_FLAG_TRUSTED_FIRST by default, such that letsencrypt connection with the default chain remains trusted even after the expiry of the redundant CA certificate
yum update openssl*
IMMEDIATE UPDATE (VIA BYPASS)
yum update openssl* --enablerepo=ELS6-rollout-4-