How to smoothly Upgrade OpenSSH

How to smoothly Upgrade OpenSSH

Because the earlier version of OpenSSH has the remote access Execution Vulnerability, You Need To Upgrade OpenSSH to fix the vulnerability after installing the Linux system to enhance server security.

Note: Do not restart the sshd service during the upgrade process; otherwise, remote connection will fail !!

Upgrade version: openssh-6.6p1

Upgrade Method:

1. Load the local source (the method is not described)

2. Execute the following commands

Yum install bash-y
Yum install-y zlib-devel openssl-devel
Tar-zxvf openssh-6.6p1.tar.gz-C/usr/local/src/
Cd/usr/local/src/openssh-6.6p1/
Cp/etc/init. d/sshd/etc/init. d/sshd. old
Tar-cvf ssh.bak.tar/etc/ssh
Yum install gcc-y

3. Uninstall the old version

Rpm-qa | grep ssh
Rpm e openssh-server-5.3p1-81.el6.x86_64
Rpm-e openssh-clients-5.3p1-81.el6.x86_64 -- nodeps
Rpm-qa | grep ssh
Rpm e openssh-askpass-5.3p1-81.el6.x86_64
Rpm e openssh-5.3p1-81.el6.x86_64
Rpm-qa | grep ssh

4. Start upgrading

./Configure -- prefix =/usr -- sysconfdir =/etc/ssh -- with-zlib -- with-md5-passwords
Make & make install
Mv/etc/init. d/sshd. old/etc/init. d/sshd
Mkdir-p/var/empty/sshd/etc
/Etc/init. d/sshd restart
Chkconfig -- add sshd
Chkconfig sshd on
Chkconfig -- list | grep sshd

5. Check whether the upgrade is successful.

Ssh-V
OpenSSH_6.6p1, OpenSSL 1.0.0-fips 29 Mar 2010

Install and configure OpenSSH in Ubuntu Server 13.10

Install OpenSSH remotely on Ubuntu

Solve the latency problem during remote login through OpenSSH

Offline installation of OpenSSH in Ubuntu 12.10

OpenSSH upgrade steps and precautions

Solutions for failures of common OpenSSH users

General thread: OpenSSH key management, Part 1 Understanding RSA/DSA authentication

Install OpenSSH and configure the sftp lock directory for RedHat

OpenSSL details: click here
OpenSSL: click here

This article permanently updates the link address: