OpenSSH升级方法详解
一、安装前准备:
1.关闭防火墙,安全机制:
2.预安装telnet并启动:
(1)安装telnet:
yum -y install telnet*
(2)启动:
systemctl enable telnet.socket
systemctl start telnet.socket
3.备份:
cp /etc/securetty /etc/securetty.bak
4.安装依赖环境:
yum -y install zlib*
yum -y install pam-*
yum -y install gcc
yum -y install openssl-devel
5.备份原有ssh服务版本:
cp /etc/ssh /etc/ssh.bak
cp /usr/bin/ssh /usr/bin/ssh.bak
cp /usr/sbin/sshd /usr/sbin/sshd.bak
二、安装openssh:
1.解压源码包:
tar -zxvf openssh-8.3p1.tar.gz -C /opt
2.编译安装:
(1)cd openssh-8.9p1
./configure --prefix=/usr/local/openssh
--with-zlib=/usr/local/zlib
--with-ssl-dir=/usr/local/ssl
(2)安装:
make && make install
3.卸载yum安装的openssh:
yum remove openssh
4.修改配置:
5.复制配置文件:
cp /opt/openssh-8.3p1/contrib/redhat/sshd.init /etc/init.d/sshd
chkconfig --add sshd
cp /usr/local/openssh/etc/sshd_config /etc/ssh/sshd_config
cp /usr/local/openssh/sbin/sshd /usr/sbin/sshd
cp /usr/local/openssh/bin/ssh /usr/bin/ssh
cp /usr/local/openssh/bin/ssh-keygen /usr/bin/ssh-keygen
cp /usr/local/openssh/etc/ssh_host_ecdsa_key.pub /etc/ssh/ssh_host_ecdsa_key.pub
6.启动:
#启动 systemctl start sshd.service
#查看状态 systemctl status sshd.service
增加开机自启 : systemctl enable sshd.service
7.验证:
ssh -V
三、总结:
1.安装前准备要做好,注意关闭防火墙安全机制。
2.编译安装时,先安装好依赖环境,再编译。
3.做好备份,预防安装过程中可能出现的问题。