SSLProtocol: Illegal protocol 'TLSv1.1' in linux

DadyByte asked:

I know u think this a duplicate question but hear me out first. I am not able to find the answer with a system with same conf as min so here is my server conf:

Red Hat 4.1.2-44
CentOS release 5
OpenSSL 1.0.2a
Server version: Apache/2.2.3

I am having protocol issue when I installed a new SSL certificate.I found out that I had TLSv1 enabled. I then looked at an article(link: https://www.leaderssl.com/news/471-how-to-disable-outdated-versions-of-ssl-tls-in-apache) to try to disable TLSv1. I have tried number off possible solutions but I am getting either Illegal protocol 'TLSv1.1' in linux error or No SSL protocols available [hint: SSLProtocol]

I get Illegal protocol 'TLSv1.1' when restart command (service httpd restart) fails after I change SSL protocol to SSLProtocol all -SSLv2 -SSLv3 -TLSv1 -TLSv1.1`)
enter image description here

and when I apply the SSL protocol: SSLProtocol all -SSLv2 -SSLv3, the server restarts successfully but I get the error in the error log of httpd saying No SSL protocols available [hint: SSLProtocol]

My answer:


CentOS 5 is several years past end of life (March 2017) and will never support TLS 1.1 or higher, not even if you attempt to replace critical system libraries as someone seems to have done with this system.

This system should have been upgraded several years ago. It can no longer be postponed. If you want support for TLS 1.1 and higher, you need to upgrade to a currently supported CentOS release (7 or 8, preferred 8).


View the full question and any other answers on Server Fault.

Creative Commons License
This work is licensed under a Creative Commons Attribution-ShareAlike 3.0 Unported License.