In the age of cyber warfare, being paranoid is the only reasonable attitude and that means, among other things, being paranoid about software updates.
Take for example OpenSSL. This open source cryptography library that implements the Transport Layer Security (TLS) and Secure Sockets Layer (SSL) protocols is designed to “secure communications over computer networks against eavesdropping”, but guess what: it has been riddled with bugs since its inception. This may be unavoidable, to a certain degree — after all, we are speaking about software. Even so, the inherent flaws of OpenSSL should not be an excuse for not keeping the version you use as bullet-proof as possible. Let’s not forget that your car is most likely hackable by a 15 year old and yet you still (presumably) lock the doors.
While you can’t do much about the yet-to-be-identified bugs, you can at least protect your systems from those bugs that have been already patched up and widely documented.
Too bad the official OpenSSL website offers Linux sources only.
While Linux distributions routinely come loaded with OpenSSL, this is not the case for Windows… or shall we say “Windows distributions”. (Didn’t Microsoft want to “Linuxify” its flaggship OS? Never mind.) If you want to run it, you need a Windows binary, and unless you are willing to compile it yourself, you have to to rely on someone else.
Here is how you can set up OpenSSL on Windows without having to deal with the code.
Step 1. Get hold of the binaries
Finding Windows binaries of OpenSSL is not an easy task, but don’t get discouraged. They do exist. To download them, navigate to:
https://slproweb.com/products/Win32OpenSSL.html
Don’t be fooled by the Win32 string in the URL nor by the navigation pointing you to a seemingly ancient download page from way back in 2004 (from the “Products” tab through the “Win32 OpenSSL link”). Scroll down the page to the section “Download Win32 OpenSSL”, ignoring the confusing string. Now you need to pick the right binary from the list. For each version, there are two basic types: the full installer and the light installer.
Download the one named “Win64 OpenSSL v1.1.0f” (or a higher-numbered version once it becomes available) to get the full installer.
The current version as of this writing (OpenSSL 1.1.0h) is very different from previous releases. It is not the same thing at all so pay attention to the release numbers! The worst thing you can do is use an old version that has documented bugs that anyone could exploit following a howto!
Step 2. Run the installer
We recommend installing OpenSSL outside of your Windows system directory.
Step 3. Start the OpenSSL binary
To invoke OpenSSL, you can simply right-click on it in the Windows Explorer at its install location, for example in:
C:\OpenSSL-Win64\bin\
then choose “Run as Administrator”.
It will open a cmd window with the OpenSSL command prompt. Here is what to expect.
Now you are ready to start creating your OpenSSL keys. (Speaking of which: users of the remote access utility PuTTY can export an OpenSSH key from PuTTYgen.) When using OpenSSL on Windows in this way, you simply omit the openssl command you see at the prompt. For example, to generate your key pair using OpenSSL on Windows, you may enter:
openssl req -newkey rsa:2048 -nodes -keyout key.pem -x509 -days 365 -out certificate.pem
and follow the onscreen instructions as usual. To review the certificate:
openssl x509 -text -noout -in certificate.pem
and so forth.
Nice post thanks
nice blog
Please how do i correct libeay32.dll is missing as I installed this openssl to fix it as someone suggested but to no avail.
I am using windows 7 please
Dear Andy:
1. Install Python 3.3
Install to default folder: C:\Python33
2. Install distribute
– Download distribute: http://pypi.python.org/pypi/distribute
– Extract to: C:\distribute
– At the command prompt: navigate to C:\distribute
– Run on command line: C:\Python33\python distribute_setup.py
3. Install pyreadline
– Download pyreadline: https://github.com/pyreadline/pyreadline
– Click on “ZIP” to download a zip file of PyReadline repository
– Extract to C:\pyreadline
– At the command prompt: navigate to C:\pyreadline
– Run this: C:\Python33\python setup.py install
4. Install pygments and pyzmq
– At the command prompt: navigate to C:\Python33\Scripts
– Run this: easy_install pygments pyzmq
5. Download and install the next 3:
– ZeroMq: http://www.zeromq.org
– PySide: http://www.pyside.org
– IPython: http://www.ipython.org
6. Launch IPython
– There should be a Start Menu shortcut
– Start Menu > All Programs > IPython > IPythonQT
I hope this is helpful for you! ;-)
Hi,
I had installed the OpenSSL on Windows 10 with successful installation. But later when try to open OpenSSL, it is showing the error “MSCVR120.dll is not found”. I tried re-installing 2 time also through the same error.
Any suggestion?
Thank for asking:
You can download the latest redistributable at the following link:
https://support.microsoft.com/en-us/help/2977003/the-latest-supported-visual-c-downloads
This will fix your problem.
I really enjoy this site with effective and useful information. This includes a very good post with many of our resources. Thank you for sharing. I enjoyed this post.
Howdy, i read your blog from time to time and i own a similar one and i was just curious if you get a lot of spam feedback?
If so how do you protect against it, any plugin or anything you can advise?
I get so much lately it’s driving me mad so any help is very much appreciated.
Hi:
Yes, spam can be quite nasty and get on your nerves!
Here are some good solutions…
—
Akismet Anti-Spam:
https://wordpress.org/plugins/akismet/
Spam protection, AntiSpam, FireWall by CleanTalk:
https://wordpress.org/plugins/cleantalk-spam-protect/
Completely free: Anti-Spam Bee
https://wordpress.org/plugins/antispam-bee/
—
Hope it helps!
Whoah, thіѕ blog about OpenSSL in Windows 10 is excellent .I really like reading your posts.
Keep up the gгeat work! You realize, lots of people аre looking around
for this info, you ϲan aid tһem greatly.
Good site you have got here.. It’s difficult to find
high quality writing like yours these days.
I seriously appreciate individuals like you! Take care!!
My programmer is trying to persuade me to move to .net from PHP.
I have always disliked the idea because of the expenses.
But he’s trying none the less. I’ve been using Movable-type on a number of websites for about a year
and am worried about switching to another platform. I have
heard good things about blogengine.net. Is there a way I can transfer
all my wordpress posts into it? Any help would be greatly appreciated!
Hi,
Movable Type costs $499 in the “Pro Unlimited” license for a year! That’s quite expensive!
> My programmer is trying to persuade me to move to .net from PHP.
You are better off with PHP 7. I’d suggest Remi Repo:
https://rpms.remirepo.net/enterprise/7/
Blogengine.net is a really bad idea!
> Is there a way I can transfer
> all my wordpress posts into it?
No, unfortunately there is no way to do this.
Thanks for providing this wonderful article. I am looking for such kind of information for last 3 hours and finally my issue is resolved. I like your article and bookmarked as well for the upcoming tech post. Keep doing.
Very good article! We are linking to this particularly great article on our website.
Keep up the great writing.
Exceptional post however , I was wanting to know if you could write a litte more on this topic?
I’d be very grateful if you could elaborate a little bit more.
Thank you!
I read this post and I like it. It’s really an awesome article.
My dеvelopeг is trying to ρersuade me to move to
.net from PHP. I have always dislіked tһe idea becɑuse of
the costs. But he’s tryiong none tһe less. I’ᴠe been using Movɑble-type on a vaгiety
of websites for about a yeаr and am woгried about switching tо another pⅼatform.
I have heard exceⅼlent things about bⅼogengine.net.
Is there a way I can import all my wordpress posts into it?
Any kind of help would be really appreciateԁ!
Hi there, I discovered your blog via Google even as looking for a similar
matter, your weЬsite came up, it appears to be very good.
I’ve bookmarked it in my gooցle bookmarks.
Hi there, simply was aware of youг weblog through Google, and іt is really informative.
I’ll be grɑteful if ʏou keep writing in the future.
Numeгous folks will also be benefit by yоur writing.
Cheers!
You should update your Microsoft Edge here:
https://www.microsoftedgeinsider.com/en-us/download/