Rhel6.5 upgrades ssl1.1.1d and openssh-8.1p1 02/03 Update SLTechnology News&Howtos

Rhel6.5 upgrades ssl1.1.1d and openssh-8.1p1

2025-02-03 Update From: SLTechnology News&Howtos shulou NAV: SLTechnology News&Howtos > Servers >

Shulou(Shulou.com)06/03 Report--

Note that root users are prohibited from logging in by default after 1.ssh upgrade, so you need to have an ordinary user who can log in. Set the location at / etc/ssh/sshd_config and change PermitRootLogin to yes or no. After upgrading, sshd is turned off by default and needs to be set to boot. 3. Close telnet4 in time after the upgrade is successful. Be sure to turn off selinux, otherwise boot will not take effect. Install telnet1.yum install telnet-server-y2.chkconfig telnet on3./etc/init.d/xinetd start4.netstat-lntup | grep 235.echo "pts/0" > > / etc/securetty echo "pts/1" > > / etc/securetty6.vim / etc/pam.d/remote #% PAM-1.0 # auth required pam_securetty.so comment this line or sed-I 's/auth required/#auth required/g' / etc/pam.d/remote7. / etc/init.d/xinetd restart8. Set whitelist and test telnet login 2. Install dependency package 1.yum-y install gcc-c++ zlib zlib-devel pam-devel2.cp / usr/lib64/libssl.so.1.0.1e {, .bak} cp / usr/lib64/libcrypto.so.1.0.1e { .bak} # backup dependency package 3. Install openssl source package 1.tar-xvf openssl-1.1.1d.tar.gz2.cd openssl-1.1.1d/3. / config-- prefix=/usr/local/openssl/1.1.1d-- shared # compilation installation View path 4.make5.mv / usr/bin/openssl / usr/bin/openssl.bak # Delete openssl rpm-e `rpm-qa on the system | grep openssl`-nodeps # 6.make install7.ln-s / usr / local/openssl/1.1.1d/bin/openssl / usr/bin/openssl ln-s / usr/local/openssl/1.1.1d/include/openssl / usr/include/openssl8.echo "/ usr/local/openssl/1.1.1d/lib" > > / etc/ld.so.conf9.ldconfig # refresh configuration 10.ldconfig-v # check whether the link path is correct. Upgrade ssh1.tar-xvf openssh-8.1p1.tar.gz2.cd openssh-8.1p1/ 3.mv / etc/pam.d/sshd / etc/pam.d/sshd.bak4. . / configure-- prefix=/usr-- sysconfdir=/etc/ssh-- with-pam-- with-zlib-- with-ssl-dir=/usr/local/openssl/1.1.1d/-- with-md5-passwords-- mandir=/usr/share/man-- without-openssl-header-check5.make6.rpm-e `rpm-qa | grep openssh`-- nodeps7.make install8.cp contrib/redhat/sshd.init / etc/init.d/sshd cp contrib/redhat/sshd.pam / etc/pam. D/sshd9.ssh-V10.service sshd start11.chkconfig-- add sshd chkconfig sshd on12.vim / etc/ssh/sshd_config PermitRootLogin yes # allow root login You don't have to set it, but you need to make sure that there is an ordinary user who can log in. Or sed-I's / ^\ # PermitRootLogin prohibit-password/PermitRootLogin yes/g' / etc/ssh/sshd_config 12.service sshd restart

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.

*The comments in the above article only represent the author's personal views and do not represent the views and positions of this website. If you have more insights, please feel free to contribute and share.