#!/bin/bash
cd /opt
ssh -V
ls
yum -y install gcc gcc-c++ glibc make autoconf openssl openssl-devel pcre-devel pam-devel
wget https://www.openssl.org/source/openssl-1.1.1i.tar.gz --no-check-certificate
wget http://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-8.8p1.tar.gz
tar xvf openssl-1.1.1i.tar.gz
tar xvf openssh-8.8p1.tar.gz
mv /usr/bin/openssl{,.bak}
mv /usr/include/openssl{,.bak}
cd openssl-1.1.1i
ls
./config shared && make && make install
ll /usr/local/bin/openssl
ll -d /usr/local/include/openssl/
ln -s /usr/local/bin/openssl /usr/bin/openssl
ln -s /usr/local/include/openssl/ /usr/include/openssl
ll /usr/bin/openssl
ll -d /usr/include/openssl
echo "/usr/local/lib64" >> /etc/ld.so.conf
/sbin/ldconfig
openssl version
mv /etc/ssh{,.bak}
mkdir /usr/local/openssh
cd /opt/openssh-8.8p1
./configure --prefix=/usr/local/openssh --sysconfdir=/etc/ssh --with-openssl-includes=/usr/local/include --with-ssl-dir=/usr/local/lib64 --with-zlib --with-md5-passwords --with-pam && make && make install
echo "UseDNS no" >> /etc/ssh/sshd_config
echo 'PermitRootLogin yes' >> /etc/ssh/sshd_config
echo 'PubkeyAuthentication yes' >> /etc/ssh/sshd_config
echo 'PasswordAuthentication yes' >> /etc/ssh/sshd_config
mv /usr/sbin/sshd{,.bak}
mv /usr/bin/ssh{,.bak}
mv /usr/bin/ssh-keygen{,.bak}
ln -s /usr/local/openssh/bin/ssh /usr/bin/ssh
ln -s /usr/local/openssh/bin/ssh-keygen /usr/bin/ssh-keygen
ln -s /usr/local/openssh/sbin/sshd /usr/sbin/sshd
ssh -V
systemctl disable sshd --now
mv /usr/lib/systemd/system/sshd.service{,.bak}
systemctl daemon-reload
cp -a /opt/openssh-8.8p1/contrib/redhat/sshd.init /etc/init.d/sshd
cp -a /opt/openssh-8.8p1/contrib/redhat/sshd.pam /etc/pam.d/sshd.pam
chkconfig --add sshd
chkconfig sshd on
systemctl disable sshd
service sshd start
sed -i 's/\#Port 22/Port 56150/' /etc/ssh/sshd_config
service sshd restart
03-09
1542
1542
11-25
1912
1912
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
