Can we upgrade OpenSSL separately from eHealth version?

Document ID : KB000011972
Last Modified Date : 14/02/2018
Show Technical Document Details
Question:

Is it possible to just upgrade OpenSSL separately from eHealth version? What would be the impact this steps can be done?

Environment:
eHealth 6.3.2.13
Answer:

It is not possible to just upgrade OpenSSL, in this case Apache httpd will not work.

We don't forbid to upgrade OpenSSL separately, but it's required to rebuild Apache httpd also, it will not work.

CA eHealth are using httpd with our custom patches, and httpd built without these patches will not work with eHealth.

Since the customer doesn't have an access to our source code, he can't rebuild Apache httpd and update OpenSSL.