centos升级openssh8.4p1
概述
每个运维都被绿盟支配着,每天都有升不完的级、打不完的补丁,用红帽官方升级包?对不起人家不识别,淦!
制作RPM包
编译环境准备
sudo yum -y install rpm-build zlib-devel openssl-devel gcc perl perl-devel pam-devel unzip compat-openssl10
创建目录结构
mkdir -p /root/rpmbuild/{SOURCES,SPECS}
下载源码包
cd /root/rpmbuild/SOURCES
wget https://cdn.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-8.4p1.tar.gz
wget https://src.fedoraproject.org/repo/pkgs/openssh/x11-ssh-askpass-1.2.4.1.tar.gz/8f2e41f3f7eaa8543a2440454637f3c3/x11-ssh-askpass-1.2.4.1.tar.gz
tar xf openssh-8.4p1.tar.gz
修改版本(可选)
- 修改SSH_VERSION变量的版本数字,建议去掉版本数字
cd openssh-8.4p1;vim version.h
/* $OpenBSD: version.h,v 1.88 2020/09/27 07:22:05 djm Exp $ */
#define SSH_VERSION "OpenSSH8.4"
#define SSH_PORTABLE "p1"
#define SSH_RELEASE SSH_VERSION SSH_PORTABLE
修改spec配置
cp openssh-8.4p1/contrib/redhat/openssh.spec ../SPECS/
chown sshd:sshd /root/rpmbuild/SPECS/openssh.spec
cp /root/rpmbuild/SPECS/openssh.spec /root/rpmbuild/SPECS/openssh.spec_def
sed -i -e "s/%global no_gnome_askpass 0/%global no_gnome_askpass 1/g" /root/rpmbuild/SPECS/openssh.sp