Home IT Linux Windows Database Network Programming Server Mobile  
           
  Home \ Linux \ Smooth upgrade to OpenSSH 6.7 Procedure     - Linux installation Jetty deployment under RedHat5 8 (Linux)

- Ubuntu 14.10 / 14.04 / 12.04 installation GNOME Pie 0.5.6 (Linux)

- MySQL script incremental backups (innobackupex) (Database)

- The PostgreSQL database pg_dump command line does not enter a password method (Database)

- HTTP Client Hints Introduction (Server)

- Use SocketServer write a sockets program (Programming)

- The script Linux command (Linux)

- Security Features Linux and Unix operating system, programming (Linux)

- apt-get and apt-cache show command examples (Linux)

- About Auto Layout and frame (Programming)

- Gentoo: existing preserved libs problem solving (Linux)

- Linux Network Statistics Tools / Command (Linux)

- Java object initialization (Programming)

- Java development specifications summary (Programming)

- Linux startup and logon security settings (Linux)

- Analysis RabbitMQ cluster (Server)

- Figlet use (Linux)

- Java filter (Programming)

- Mac OS X system setup Google Go language development environment configuration tool Sublime Text 2 (Linux)

- Realization of Linux operating system illegal IP censorship (Linux)

 
         
  Smooth upgrade to OpenSSH 6.7 Procedure
     
  Add Date : 2017-08-31      
         
       
         
  First, the description of the environment

1) Operating System: CentOS 5.5 64 Wei

2) before Openssl upgraded version: openssl 0.9.8e

3) After Openssl upgraded version: openssl 1.0.1j (source installation)

4) before Openssh upgrade version: openssh-4.3p2-41.el5

5) After Openssh upgraded version: openssh_6.7p1 (source installation)

6) connecting tool xshell 4

Second, instead of OpenSSH installed Dropbear

Installation dropbear only to fail when upgrading sshd does not start up, you can still log into the system. You can also use other tools in place, such as telnet

1) Download the installation package dropbear

https://matt.ucc.asn.au/dropbear/releases/dropbear-2014.66.tar.bz2

2) Check the installation dependencies

yum install zlib * gcc make

3) compile and install dropbear

# Tar jxf dropbear-2014.66.tar.bz2

# Cd dropbear-2014.66

# ./configure

# Make && make install

4) generate a certificate

# / Usr / local / bin / dropbearkey -t dss -f / etc / dropbear / dropbear_dss_host_key

# / Usr / local / bin / dropbearkey -t rsa -s 4096 -f / etc / dropbear / dropbear_rsa_host_key

5) Start dropbear

# / Usr / local / sbin / dropbear -p 2222 // listening port 2222

See if started successfully:

Third, the upgrade to OpenSSL openssl-1.0.1j, and delete the old version

1) Before upgrading preparation

Download openssl-1.0.1j

http://www.openssl.org/source/openssl-1.0.1j.tar.gz

2) remove the old version

#rpm -e `rpm -qa | grep openssl` --allmatches --nodeps

3) Install openssl, you must remember to add --shared option or when compiling openssh will find the newly installed openssl library, being given: openssl does not match the header and library version

# ./config --prefix = / Usr --shared

# Make

# Make test

# Make install

After the completion of view openssl version installed correctly

Fourth, to upgrade sshd OpenSSH-6.7 and delete old versions of ssh

1) Before upgrading preparation

Check whether the lack of package

# Rpm -qa | egrep "gcc | make | perl | pam | pam-devel"

If you have configured the yum yum, then you can directly install these packages, so that both can verify installed, not installed directly installed.

yum -y install gcc * make perl pam pam-devel

2) Download openssh-6.7p1.tar.gz

http://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-6.7p1.tar.gz

Backup ssh:

# Mv / etc / ssh /etc/ssh.bak

# Openssl version -a

3) compile and install the new version of openssh

# Tar zxf openssh-6.7p1.tar.gz && cd openssh-6.7p1

# ./configure --prefix = / Usr --sysconfdir = / etc / ssh --with-pam --with-zlib --with-md5-passwords

# Make

After first uninstall the old version of openssh, then make install

# Rpm -qa | grep openssh

# Rpm -e `rpm -qa | grep openssh`

Openssh-askpass is a graphical interface to enter a password, do not need can not install

# Make install

4) Check whether to upgrade to the new version

5) Copy the startup script to /etc/init.d

# Cp /root/openssh-6.7p1/contrib/RedHat/sshd.init /etc/init.d/sshd

Join boot from Kai

# Chkconfig --add sshd

6) Start sshd, with start or reload. Do not restart, restart disconnected directly, but will not then start sshd service, this time to enter the machine via other means, and then start the sshd service job.

Fourth, delete dropbear.

In xshell in re-open a tab,

Here Dropbear to prevent the upgrade is not successful, it is used instead of openssh connect to the server.

In the open port 2222 (the port dropbear startup, you can set the other), the method of connecting through xshell are:

Xshell: \> ssh 192.168.4.1 2222 (192.168.4.1 for the server to connect to ip)

Remove dropbear installed files and kill the process

# Rm -rf / etc / dropbear / / usr / local / sbin / dropbear / usr / local / bin / dropbear *
     
         
       
         
  More:      
 
- JEdit 5.2 Pro Edition installation on Ubuntu 14.04 (Linux)
- AWR Report (Database)
- Quickly build and install Linux KVM system (Linux)
- How to install CentOS 7.x in OpenERP (Odoo) (Linux)
- NFS-based services and service utilization Corosync DRBD high availability cluster configuration, respectively (Server)
- How to customize your Linux desktop: Gnome 3 (Linux)
- Firewall settings oracle remote connection in Linux systems (Linux)
- Binary search -Java achieve (Programming)
- C # and JavaScript arrays to re-summary (Programming)
- Java proxy mode (Programming)
- tar decompression problems gzip: stdin: not in gzip format (Linux)
- The FreeBSD zfs: failed with error 6 Error Resolution (Linux)
- The SVN installation, configuration and start - up under Linux (CentOS 6.5) (Server)
- Kubuntu 14.04 desktop to the user how to upgrade KDE 4.13.2 (Linux)
- Linux use iptables ban Ping (Linux)
- How UTorrent download the ISO image from the command line (Linux)
- 32-bit and 64-bit integer in PHP and MySQL range (Database)
- Necessity in Java packages (Programming)
- Create RAID 1 (mirroring) with two disks (Linux)
- C ++ 11 smart pointers (Programming)
     
           
     
  CopyRight 2002-2016 newfreesoft.com, All Rights Reserved.