CentOS 6.7 has really OLD curl. Best way to update curl?
I've got version 3 of a website running on a CentOS server and was recently notified by a payment gateway that they plan to upgrade their SSL/TSL transport. They kindly supplied a battery of tests. The tests have revealed that curl is lamentably old on CentOS 6.7:
Code:
$ curl --version Code:
sudo yum clean all Code:
Package libcurl-7.19.7-46.el6.x86_64 already installed and latest version There's an upgrade method using RPM here. Basically it says do this: Quote:
Can anyone recommend the best way to deal with this such that my curl is updated (ideally 7.35 or later) and stays patched with security fixes and so on? |
* Update this host to 7.x, or
* compile it yourself, install to /usr/local so it doesn't touch the system, and take responsibility for updates, or * use city-fan and trust it will not break anything |
Thanks for your response.
Quote:
If I compile myself, why keep it from touching the system? The desire is to have it upgrade curl usage in PHP scripts et.al so it's desirable for us to have it "touch" the system I think. Is it really going to break anything? As for trusting city-fan -- I've no idea who they are or whether they are trustworthy. I'm not exactly inclined to trust them with this particular server as it performs some sensitive operations. |
Also, I suspect that the curl installed on CentOS 6.7 uses NSS instead of OpenSSL -- not certain about that but it seems to be a complicating issue if I hope to compile from source.
|
OK I downloaded curl 7.48 source code from haxx.se and did the ./configure and make and make install and now when I invoke curl from the CLI it reports version 7.48.
HOWEVER, the version of curl reported by PHP is still the old one: Code:
$ php -r 'var_dump(curl_version());' |
All times are GMT -5. The time now is 01:05 AM. |