On Tue, Mar 17, 2026 at 7:33 AM E.S. Rosenberg <[email protected]> wrote:
> Sorry but - > In what world is building httpd/openssl from source saner than upgrading > your distro that is going EOL in 3 month? > The distro upgrade/switch work is anyhow about to be inevitable so you may > as well start it before you are forced even more than you are now. > > HTH, > Eliyahu - אליהו > > Amazon Linux 2 is going EOL in June 2026 - > https://docs.aws.amazon.com/AL2/latest/relnotes/relnotes-20251208.html > > Op di 17 mrt 2026 om 00:13 schreef Frank Gingras <[email protected]>: > >> >> >> On Mon, Mar 16, 2026 at 5:57 PM James H. H. Lampert via users < >> [email protected]> wrote: >> >>> On Mon, Mar 16, 2026 at 5:10 PM I wrote: >>> . . . >>> >> Amazon tells me that if I want openssl 1.1, I need to install it >>> >> separately. And when I did a Google search on how to switch httpd >>> >> over to a separately installed openssl 1.1, everything I got said >>> >> "compile from source." >>> >> >>> >> How on Earth would I do that, without having any development tools >>> >> on the instance? >>> >> >>> >> Can somebody point me to a path-of-least-resistance? >>> >>> And on 3/16/26 2:21 PM, Frank Gingras wrote: >>> >>> > Installing openssl 1.1 and rebuilding httpd is likely the sanest >>> > approach here. >>> >>> Thanks for getting back to me so quickly, but . . . >>> >>> Having never actually done an httpd rebuild before, I have no idea >>> whether the Amazon Linux 2 instance in question is currently capable of >>> it, or what else needs to be installed if it's not currently capable. >>> >>> -- >>> James H. H. Lampert >>> >>> --------------------------------------------------------------------- >>> To unsubscribe, e-mail: [email protected] >>> For additional commands, e-mail: [email protected] >>> >>> >> You likely need to install the -devel packages if the headers are not >> included in the main install base, or if the packages are stripped. >> httpd uses the configure script, which should be able to find all >> dependencies, or yell if one of them isn't met. >> >> The short answer is that you'll need apr and apr-util, as well as openssl >> headers. >> > Indeed, using an EOL distribution is a bad idea. The focus on my answers was on building support on ancient systems, in the event that it can't be upgraded.
