注意:如果有ssh免密登录,升级过程中一定要备份ssh目录,升级过程中,使用ssh免密登录的程序可能会无法连接
CentOS6.5离线依赖包及openssh8.6p1安装包:
https://download.csdn.net/download/huan0424cn/19359538
CentOS6.6离线依赖包及openssh8.6p1安装包:
https://download.csdn.net/download/huan0424cn/19359591
CentOS7.2离线依赖包及openssh8.6p1安装包:
https://download.csdn.net/download/huan0424cn/19359623
CentOS7.3离线依赖包及openssh8.6p1安装包:
https://download.csdn.net/download/huan0424cn/19359653
CentOS7.4离线依赖包及openssh8.6p1安装包:
https://download.csdn.net/download/huan0424cn/19359690
安装环境
1、查看openssh版本,系统版本
ssh -V
cat /etc/redhat-release
2、备份SSH目录
cp -r /etc/ssh /etc/ssh.bak`date +%Y%m%d`
3、新建opensshpackages文件夹(各个组件都上传至此文件夹)
mkdir /opensshpackages
cd /opensshpackages
mkdir update
4、上传依赖包到新建立的目录中
5、安装依赖包
cd /opensshpackages
rpm -ivh --nodeps(install)
cd /opensshpackages/update
rpm -Uvh (update)
安装OPENSSH
1、上传openssh-8.6p1.tar.gz到/opensshpackages文件夹
2、解压openssh-8.6p1.tar.gz
tar -zxvf openssh-8.6p1.tar.gz
3、进入openssh-8.6p1目录
cd /openssh-8.6p1
4、编译参数
./configure --prefix=/usr --sysconfdir=/etc/ssh --with-zlib --without-openssl-header-check --with-ssl-dir=/usr/local --with-privsep-path=/var/lib/sshd
make
5、卸载旧版本
rpm -qa |grep openssh
rpm -e openssh相关软件包
6、编译安装
make install
7、关于key的警告信息,如:Permissions 0640 for '/etc/ssh/ssh_host_ed25519_key' are too open.
chmod 600 /etc/ssh/ssh_host_rsa_key
chmod 600 /etc/ssh/ssh_host_ecdsa_key
chmod 600 /etc/ssh/ssh_host_ed25519_key
8、配置sshd服务(本次openssh安装包路径在opensshpackages中)
cp -p /opensshpackages/openssh-8.6p1/contrib/redhat/sshd.init /etc/init.d/sshd
9、添加权限
chmod +x /etc/init.d/sshd
10、添加开机自启动
systemctl enable sshd
chkconfig sshd on
11、允许root远程登录
vi /etc/ssh/sshd_config
#PermitRootLogin without passwd
改为
PermitRootLogin yes
12、启动ssh服务
systemctl start sshd
注:如果升级完成后ssh无法连接,提示拒绝密码登录
1、临时关闭selinux :setenforce 0
2、永久关闭selinux :vi /etc/selinux/config 把SELINUX=enforcing改为SELINUX=disabled