热门标签
热门文章
- 1图像分类的发展史_图像分类的发展历程
- 2python --pywebview、flaskwebgui发桌面程序
- 3瑞芯微RKNN开发·yolov7_rknn yolov7
- 4Mac相关配置(本地host,端口被占用)_mac host显示[::1]
- 5uni-app小程序开发 基础 看这篇就够了_uniapp开发小程序
- 6MIPS基础
- 7AutoJS 4.1.0使用教程(清晰详细)_auto.js
- 8react页面滚动时导航栏的显示与隐藏_react 横向滚动菜单
- 9Python开发游戏自动化脚本(三)后台键鼠操作_python 后台鼠标模拟
- 10GPT学术优化 (GPT Academic):支持一键润色、一键中英互译、一键代码解释、chat分析报告生成、PDF论文全文翻译功能、互联网信息聚合+GPT等等
当前位置: article > 正文
CentOS 7(7.3及以上版本)系统的openssh升级至9.6_openssh升级到9.6
作者:Monodyee | 2024-03-22 06:00:09
赞
踩
openssh升级到9.6
(仅供个人学习参考使用)
(脚本已在测试环境上验证并升级过,可正常使用,但没有直接在生产环境上运行过,如果要上生产环境,需谨慎确认,必要时可修改脚本中的内容)
由于OpenSSH 9以上的版本需要升级openssl,故在编写脚本之前也制作了openssl的升级包。
openssh升级后的版本:openssh-9.6p1
openssl 升级后版本:openssl-1.1.1w(openssh 9.6的rpm包是基于openssl-1.1.1w制作出来的)
脚本如下:
- [root@node01 openssh-9.6-update-scripts]# cat openssh-update.sh
- #!/bin/bash
- #
-
- ## show openssh version
- ssh -V
-
- ## show openssl version
- openssl version
-
- sleep 30
-
- ## create openssh yilai cangku
- echo "[yilai]
- name=openssh openssl yilai
- baseurl=file:///root/chenwenshuo/openssh-9.6-update-scripts/openssh-openssl-yilai
- gpgcheck=0
- enabled=1" > /etc/yum.repos.d/openssh.repo
-
- yum makecache
-
- ## install telnet-server
- yum -y install telnet telnet-server
-
- ## start telnet-server service
- systemctl start telnet.socket && systemctl enable telnet.socket
-
- mv /etc/securetty /etc/securetty.bak-20240102
-
- if [ $(systemctl status telnet.socket | grep active | awk -F ' ' '{print $2}') = active ]; then
- echo "telnet service is normal!"
- fi
-
- echo "please test telnet service is or not normal:"
- sleep 60
-
- ## backup pam and ssh configuration
- cp -a /etc/pam.d /etc/pam.d.bak-20240102
- cp -a /etc/ssh /etc/ssh.bak-20240102
-
- ## install openssl-1.1.1w package
- if [ $(openssl version | awk -F '-' '{print $1}' | awk -F ' ' '{print $2}') = 1.0.1e ]; then
- yum -y install openssl-1.0.2k* openssl-devel-1.0.2k*
- fi
-
- if [ $(openssl version | awk -F '-' '{print $1}' | awk -F ' ' '{print $2}') = 1.0.2k ]; then
- rpm -ivh /root/chenwenshuo/openssh-9.6-update-scripts/openssl-1.1.1w-rpm/openssl-1.1.1w-1.el7.centos.x86_64.rpm --nodeps --force
- rpm -ivh /root/chenwenshuo/openssh-9.6-update-scripts/openssl-1.1.1w-rpm/openssl-devel-1.1.1w-1.el7.centos.x86_64.rpm --nodeps --force
- rpm -ivh /root/chenwenshuo/openssh-9.6-update-scripts/openssl-1.1.1w-rpm/openssl-debuginfo-1.1.1w-1.el7.centos.x86_64.rpm --nodeps --force
- fi
- ## show openssl new version
- rpm -qa | grep openssl
-
- openssl version
-
-
- sleep 30
-
- ## install openssh-9.6 package
- yum -y install perl
- yum -y localinstall /root/chenwenshuo/openssh-9.6-update-scripts/openssh-9.6-gitscript/x86_64/openssh-*
-
- ## ssh configuration permission change
- chmod 600 /etc/ssh/ssh_host_ecdsa_key /etc/ssh/ssh_host_ed25519_key /etc/ssh/ssh_host_rsa_key
-
- ## sshd_config configuration change
- echo "PubkeyAuthentication yes" >> /etc/ssh/sshd_config
- echo "PasswordAuthentication yes" >> /etc/ssh/sshd_config
- echo "PermitRootLogin yes" >> /etc/ssh/sshd_config
-
- ## start sshd service
- systemctl restart sshd.service && systemctl enable sshd.service
-
- /sbin/chkconfig sshd on
-
-
- ## show openssh and openssl version for update complete
- openssl version
-
- ssh -V
- [root@node01 openssh-9.6-update-scripts]#
与如上脚本关联的升级包以及依赖包可在此链接获取。
https://download.csdn.net/download/mylove_0/88705726?spm=1001.2014.3001.5501
声明:本文内容由网友自发贡献,不代表【wpsshop博客】立场,版权归原作者所有,本站不承担相应法律责任。如您发现有侵权的内容,请联系我们。转载请注明出处:https://www.wpsshop.cn/w/Monodyee/article/detail/285741
推荐阅读
相关标签
