I'm on osx 10.11.
(Background:
I'm having trouble getting the system installed Python to use TLS 1.1.)
From what I've read I need to use brew to manage Python. But I want to upgrade openssl first so Python picks up the right version?
I did brew update, brew upgrade, brew doctor (no problems)
Then I tried:
$ brew install openssl
Warning: openssl-1.0.2h_1 already installed
$ brew link openssl --force
Linking /usr/local/Cellar/openssl/1.0.2h_1...
Error: Could not symlink ../../../opt/openssl/include/openssl/aes.h
/opt/openssl/include/openssl is not writable.
$ brew link --force openssl
Linking /usr/local/Cellar/openssl/1.0.2h_1... 1601 symlinks created
I'm not sure if those worked on not, but here's where I am now:
$ openssl version
OpenSSL 0.9.8zg 14 July 2015
$ which openssl
/usr/local/bin/openssl
$ ls -l /usr/local/bin/openssl
lrwxr-xr-x 1 greg admin 46 Jun 27 15:23 /usr/local/bin/openssl -> /usr/local/Cellar/openssl/1.0.2h_1/bin/openssl
$ /usr/local/Cellar/openssl/1.0.2h_1/bin/openssl version
OpenSSL 1.0.2h 3 May 2016
So it seems like I might have installed the upgraded openssl version but am I ready to do brew install python and it will get the right openssl version and let me use TLS 1.1?
(Is this even the right approach to get TLS 1.1 support for Python?)
Best Answer
solution to install from source and get around the homebrew error
-> Warning: openssl-1.0.2j already installed, it's just not linked.
->Warning: Refusing to link: openssl Linking keg-only openssl means you may end up linking against the insecure, deprecated system OpenSSL while using the headers from Homebrew's openssl. Instead, pass the full include/library paths to your compiler e.g.: -I/usr/local/opt/openssl/include -L/usr/local/opt/openssl/lib
now, you will think you failed. but per OpenSSL not getting linked with homebrew on El Capitan 10.11.6 you have to close your terminal then reopen it now
will show that you are using the new version.