As mentioned previously in Webtatic EL5 and EL6 going HTTPS on 18th July, Webtatic EL5 and EL6 will now, for new webtatic-release RPM installations and upgrades, use HTTPS protocol to download packages.
This was possible since October last year when EL7 was released with HTTPS support by default, however wasn’t applied due to potential issues with old minor releases of RHEL/CentOS. Since then, Webtatic has taken the decision to focus on the latest minor releases (5.11, 6.6, 7.1) in securing traffic.
As the previous article mentioned, this is on top of the GPG signature validation that already happens by default for all packages, which ensure packages can’t be tampered.
If you’re having problems with this switch, it’s recommended to upgrade your RHEL/CentOS minor version:
- between 5.0 and 5.10 – upgrade to 5.11
- between 6.0 and 6.5 – upgrade to 6.6
Once done, ensure your openssl package is the latest version.