1、安装telnet防止ssh更新时网络断开无法连接
[root@bogon ~]# yum install -y telnet-server telnet xinetd
[root@bogon ~]# vim /etc/xinetd.d/telnet
disable = no #启用telnet
service xinetd start
2、测试telnet是否可用
[root@bogon ~]# telnet 192.168.19.129 23
useradd test
[root@bogon ~]# echo "123456" | passwd --stdin test
Changing password for user test.
passwd: all authentication tokens updated successfully.
3、安装vsftpd(防止sftp无法使用时,使用ftp传文件)
[root@bogon ~]# yum install -y vsftpd ftp
4、安装openssh相关依赖包和编译环境
[root@bogon ~]# yum install -y gcc libstdc++-devel gcc-c++ zlib-devel keyutils-libs-devel libcom_err-devel libsepol-devel libselinux-devel krb5-devel openssl-devel pkgconfig
5、卸载旧版和备份原始ssh配置
[root@bogon ~]# cp -rf /etc/ssh /etc/ssh.bak
[root@bogon ~]# yum remove openssh -y
6、安装新版ssh
[root@bogon ~]# tar fx openssh-7.9p1.tar.gz -C /usr/
[root@bogon ~]# cd /usr/openssh-7.9p1/
[root@bogon ~]# ./configure
[root@bogon ~]# make
[root@bogon ~]# make install
7、设置ssh开机启动
[root@bogon ~]# cp -r /usr/openssh-7.9p1/contrib/redhat/sshd.init /etc/init.d/sshd
[root@bogon ~]# vim /etc/init.d/sshd
SSHD=/usr/local/sbin/sshd
/usr/local/bin/ssh-keygen -A
/sbin/restorecon /usr/local/etc/ssh_host_rsa_key.pub
/sbin/restorecon /usr/local/etc/ssh_host_dsa_key.pub
/sbin/restorecon /usr/local/etc/ssh_host_ecdsa_key.pub
8、将sshd添加到服务和允许root远程登录并启动
[root@bogon ~]# chkconfig --add sshd
[root@bogon ~]# vim /usr/local/etc/sshd_config
PermitRootLogin yes
PasswordAuthentication yes
[root@bogon ~]# service sshd restart
9、查看ssh的版本
[root@bogon ~]# ssh -V
OpenSSH_7.9p1, OpenSSL 1.0.1e-fips 11 Feb 2013