linux6升级ssh,centos6 升级ssh(openssh)

1、安装telnet防止ssh更新时网络断开无法连接

[root@bogon ~]# yum install -y telnet-server telnet xinetd

[root@bogon ~]# vim /etc/xinetd.d/telnet

disable = no #启用telnet

service xinetd start

2、测试telnet是否可用

[root@bogon ~]# telnet 192.168.19.129 23

useradd test

[root@bogon ~]# echo "123456" | passwd --stdin test

Changing password for user test.

passwd: all authentication tokens updated successfully.

3、安装vsftpd(防止sftp无法使用时，使用ftp传文件)

[root@bogon ~]# yum install -y vsftpd ftp

4、安装openssh相关依赖包和编译环境

[root@bogon ~]# yum install -y gcc libstdc++-devel gcc-c++ zlib-devel keyutils-libs-devel libcom_err-devel libsepol-devel libselinux-devel krb5-devel openssl-devel pkgconfig

5、卸载旧版和备份原始ssh配置

[root@bogon ~]# cp -rf /etc/ssh /etc/ssh.bak

[root@bogon ~]# yum remove openssh -y

6、安装新版ssh

[root@bogon ~]# tar fx openssh-7.9p1.tar.gz -C /usr/

[root@bogon ~]# cd /usr/openssh-7.9p1/

[root@bogon ~]# ./configure

[root@bogon ~]# make

[root@bogon ~]# make install

7、设置ssh开机启动

[root@bogon ~]# cp -r /usr/openssh-7.9p1/contrib/redhat/sshd.init /etc/init.d/sshd

[root@bogon ~]# vim /etc/init.d/sshd

SSHD=/usr/local/sbin/sshd

/usr/local/bin/ssh-keygen -A

/sbin/restorecon /usr/local/etc/ssh_host_rsa_key.pub

/sbin/restorecon /usr/local/etc/ssh_host_dsa_key.pub

/sbin/restorecon /usr/local/etc/ssh_host_ecdsa_key.pub

8、将sshd添加到服务和允许root远程登录并启动

[root@bogon ~]# chkconfig --add sshd

[root@bogon ~]# vim /usr/local/etc/sshd_config

PermitRootLogin yes

PasswordAuthentication yes

[root@bogon ~]# service sshd restart

9、查看ssh的版本

[root@bogon ~]# ssh -V

OpenSSH_7.9p1, OpenSSL 1.0.1e-fips 11 Feb 2013