Install openssh on AIX 5.3
- Get openssh and openssl from IBM website or sourceforge. openssh version: 4.5.0.5302 openssl version: openssl.9.8.410
- Use smitty to install openssl and openssh.
- Generate ssh RSA key and leave the passphrase blank by simply hitting the enter key twice when prompted to enter one. Don't use DSA.
- $ssh-keygen RAS key is located on /.ssh id_rsa.pub is public key which you can share to other users. id_rsa is private key which you should protect it from accessing by any other users.
- Config openssh
#use only protocol v2, version 1.33 and 1.5 of ssh protocol is not completely cryptographically safe (according to Nessus probe)
-
sed -e 's/#Protocol 2,1/Protocol 2/' /etc/ssh/sshd_config > /etc/ssh/sshd_config_new
-
mv /etc/ssh/sshd_config_new /etc/ssh/sshd_config
-
#facilitate remote login sessions between an authorized user and a trusted host
-
sed -e 's/#AuthorizedKeysFile .ssh/authorized_keys/AuthorizedKeysFile .ssh/authorized_keys' /etc/ssh/sshd_config > /etc/ssh/sshd_config_new
-
mv /etc/ssh/sshd_config_new /etc/ssh/sshd_config
- Restart sshd
$stopsrc -s sshd
-
$startsrc -s sshd
- Test if protocol v2 is running.
$tn localhost 22
-
Trying...
-
Connected to loopback. Escape character is '^T'.
-
SSH-2.0-OpenSSH_4.5 Protocol mismatch. Connection closed.