Shulou(Shulou.com)06/01 Report--

Most people do not understand the knowledge of this article "how to use OpenSSL to compile and install OpenSSH under CentOS", so the editor summarizes the following contents, detailed contents, clear steps, and has a certain reference value. I hope you can get something after reading this article. Let's take a look at this "how to use OpenSSL to compile and install OpenSSH under CentOS" article.

Detect the installed package # rpm-qa | grep openssh openssh# rpm-qa | grep openssh openssl

Uninstall rpm-e if there is a dependent package that can not be uninstalled, add-nodeps at the end, for example:

# rpm-e openssl-- nodeps

The specific installation process is as follows:

Download the latest package source code http://ftp5.usa.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-7.3p1.tar.gzhttp://www.openssl.org/source/openssl-1.0.2j.tar.gzhttp://www.openssl.org/source/openssl-fips-2.0.13.tar.gz use YUM to install the necessary software development package # yum install-y zlib-devel pam-devel tcp_wrappers-devel install openssl-fips

For more information, please see http://www.openssl.org/docs/fips

# tar zxpf openssl-fips-2.0.5.tar.gz# cd openssl-fips#. / config# make & & make install installation OpenSSL# tar zxpf openssl-1.0.1h.tar.gz# cd openssl-1.0.1h#. / config fips--shared# make & & make install adds the newly compiled openssl library to the system dynamic library link # echo "/ usr/local/ssl/lib" > > / etc/ld.so.conf# ldconfig installation OpenSSH# tar zxpf openssh -6.6p1.tar.gz# cd openssh-6.6p1#. / configure\-- prefix=/usr\-- sysconfdir=/etc/ssh\-- with-md5-passwords\-- with-pam\-- with-tcp-wrappers\-with-ssl-dir=/usr/local/ssl# make & & make install# ssh- V

Modify related configuration

# cp-p contrib/redhat/sshd.init / etc/init.d/sshd (the contrib path here is the decompressed OpenSSH package path) # chmod uplix / etc/init.d/sshd (with execution permission) # chkconfig-add sshd (add sshd service) # chkconfig sshd on (add sshd to startup) # yum install openssh (install OpenSSH client) # vim / etc/ssh/sshd_configPermitRootLogin yes # allow root account to log in A single root account must be added. For other parameters, please modify the test login # / etc/init.d/sshd startssh-keygen: illegal option-- AUsage: ssh-keygen [options] Options:-a trials Number of trials for screening DH-GEX moduli.-B Show bubblebabble digest of key file.-b bits Number of bits in the key to create.-C comment Provide new comment.-c Change comment in private and public key files.-e Convert OpenSSH to IETF SECSH key file.- F hostname Find hostname in known hosts file.-f filename Filename of the key file.-G file Generate candidates for DH-GEX moduli.-g Use generic DNS resource record format.-H Hash names in known_hosts file.-i Convert IETF SECSH to OpenSSH key file.-l Show fingerprint of key file.-M memory Amount of memory (MB) to use for generating DH-GEX moduli.-N phrase Provide new passphrase.-P phrase Provide old passphrase.- P Change passphrase of private key file.-q Quiet.-R hostname Remove host from known_hosts file.-r hostname Print DNS resource record.-S start Start point (hex) for generating DH-GEX moduli.-T file Screen candidates for DH-GEX moduli.-t type Specify type of key to create.-v Verbose.-W gen Generator to use for generating DH-GEX moduli.-y Read private key file and print public key.Starting sshd : [OK]

There is a problem with the ssh-keygen parameter of the sshd file. I don't know how to solve it for the time being, but it doesn't affect the use.

The above is about the content of this article on "how to use OpenSSL to compile and install OpenSSH under CentOS". I believe we all have a certain understanding. I hope the content shared by the editor will be helpful to you. If you want to know more about the relevant knowledge, please pay attention to the industry information channel.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.