Keep your data private! Install Clario for mobile and desktop.
Try NowAd
OpenSSL
OpenSSL
1.1.1k
0.0
0.0
OpenSSL free download for Mac

OpenSSL for Mac1.1.1k

26 March 2021

Cryptography library and toolkit that enables developers to work with the TLS and SSL protocols.

What is OpenSSL for Mac

OpenSSL provides support for the TLS and SSL protocols and also includes various tools used in cryptography. Note that OpenSSL is officially available only as source, so you must manually compile and install the software on your Mac.

Deploy the OpenSSL toolkit via the command line

To install the OpenSSL toolkit and library on your Mac, you must open the Terminal application, go to the OpenSSL source folder, and follow the instructions from the INSTALL file included in the archive.

For short, you must run the "./config", "make", "make test", and "make install" commands, and then type openssl in the Terminal. If you need to see what OpenSSL release you are using, you can use the "version" argument.

Note that you must make sure you are using the correct PATH to reach the latest OpenSSL installation. When you install OpenSSL, you get to see the output location, and you can check the path used by default with the "which openssl" shell command.

Older OpenSSL versions are delivered with the system by default, and the old link will most likely be preserved. This means that you must configure the shell to use the correct path on your own.

Worth mentioning is that you can also install the toolkit using a package management solution such as Homebrew.

Quick access to SSL and Crypto libraries

While in OpenSSL's command line interface, you get to see all the standard, message digest, or cipher commands supported by OpenSSL, but you do not get usage instructions.

Make sure to check the online documentation to read extensive descriptions and learn about configuration options for each of the included commands.

OpenSSL's developers also provide a Frequently Asked Questions section where you can get details about the latest version, about how you can use the commands, and so on.

To conclude, the OpenSSL software package offers you the possibility to work with the SSL and TLS protocols or to access cryptography tools, as long as you are willing to work with the command line.

What's new in OpenSSL

Version 1.1.1k:
  • Fixed a problem with verifying a certificate chain when using the X509_V_FLAG_X509_STRICT flag. This flag enables additional security checks of the certificates present in a certificate chain. It is not set by default.
  • Starting from OpenSSL version 1.1.1h a check to disallow certificates in the chain that have explicitly encoded elliptic curve parameters was added as an additional strict check.
  • An error in the implementation of this check meant that the result of a previous check to confirm that certificates in the chain are valid CA certificates was overwritten. This effectively bypasses the check that non-CA certificates must not be able to issue other certificates.
  • If a "purpose" has been configured then there is a subsequent opportunity for checks that the certificate is a valid CA. All of the named "purpose" values implemented in libcrypto perform this check. Therefore, where a purpose is set the certificate chain will still be rejected even when the strict flag has been used. A purpose is set by default in libssl client and server certificate verification routines, but it can be overridden or removed by an application.
  • In order to be affected, an application must explicitly set the X509_V_FLAG_X509_STRICT verification flag and either not set a purpose for the certificate verification or, in the case of TLS client or server applications, override the default purpose.
  • Fixed an issue where an OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_cert extension then a NULL pointer dereference will result, leading to a crash and a denial of service attack.
  • A server is only vulnerable if it has TLSv1.2 and renegotiation enabled (which is the default configuration). OpenSSL TLS clients are not impacted by this issue.
Try our new feature and write a detailed review about OpenSSL. All reviews will be posted soon.
Write your thoughts in our old-fashioned comment
MacUpdate Comment Policy. We strongly recommend leaving comments, however comments with abusive words, bullying, personal attacks of any type will be moderated.
0.0
(0 Reviews of )
There are no reviews yet
Help the community
There are no reviews yet, be the first to leave one
Free
0.0
0.0
App requirements: 
  • Intel 64
  • OS X 10.9.0 or later
License: 
FreeAbsolutely Free

Downloaded & Installed 278 times

How would you rate OpenSSL?
Similar apps
VPN-X Client
P2P/SSL/TLS VPN client.
Is this app is similar to VPN-X Client? Vote to improve the quality of this list.
Vote results
1
Upvotes
1
Total score
0
Downvotes
VPN-X Server
P2P/SSL/TLS VPN server.
Is this app is similar to VPN-X Server? Vote to improve the quality of this list.
Vote results
1
Upvotes
1
Total score
0
Downvotes
PEIG
Strong authentication solution.
Is this app is similar to PEIG? Vote to improve the quality of this list.
Vote results
1
Upvotes
1
Total score
0
Downvotes