热门标签
热门文章
- 1逻辑回归原理_逻辑回归模型原理
- 2通过构建Storage Explorer 应用学习Windows Azure Storage APIs
- 3Java反射机制详解
- 4Python机器学习实战(一)_机器学习实战案例
- 5slam的简单操作以及原理_slam 调用
- 6逻辑回归(logistics regression)_x越大y越趋近于1的函数
- 7Qt中QGraphicsView架构下实时鼠标绘制图形_qgraphicsview鼠标绘制图形
- 8防火墙firewall_sudo: firewall-cmd:找不到命令
- 9《最新出炉》系列入门篇-Python+Playwright自动化测试-9-页面(page)_playwright page对象能关闭浏览器不
- 10java-swing编程,实现计算器——支持四则运算_java计算器可以做带括号的四则运算及显示历史计算记录
当前位置: article > 正文
Centos 7 升级openssh_centos7升级openssh
作者:花生_TL007 | 2024-03-22 05:59:14
赞
踩
centos7升级openssh
- #!/bin/bash
- # 安装编译环境
- yum install -y gcc gcc-c++ glibc make autoconf openssl openssl-devel pcre-devel pam* zlib*
-
-
- # 【openssl】
- # 备份当前openssl
- mv /usr/bin/openssl /usr/bin/openssl_bak
- mv /usr/include/openssl /usr/include/openssl_bak
-
-
- # 编译安装openssl
- tar xf openssl-1.1.1o.tar.gz
- cd openssl-1.1.1o
- ./config shared && make && make install
-
- cp libssl.so.1.1 /usr/lib64/
- cp libcrypto.so.1.1 /usr/lib64/
- ln -s /usr/local/include/openssl /usr/include/openssl
- echo "/usr/local/lib64" >> /etc/ld.so.conf
- /sbin/ldconfig
- openssl version
-
- # 创建软连接 openssl-1.1.1o 这个版本
- ln -s /usr/local/bin/openssl /usr/bin/openssl
- ln -s /usr/local/include/openssl /usr/include/openssl
-
-
-
- # 【openssh】
- # 编译安装
- https://mirrors.aliyun.com/pub/OpenBSD/OpenSSH/portable/openssh-9.5p1.tar.gz
- tar xf openssh-9.5p1.tar.gz
- cd openssh-9.5p1
-
- # 隐藏版本号
- sed -i 's/OpenSSH_9.0/OpenSSH_899/g' version.h
-
-
- wget "http://hello.ejoydom.com:19009/static/openssh-9.3p1.tar.gz"
- ./configure --prefix=/usr/local/myssh_9.5p1 --sysconfdir=/usr/local/myssh_9.5p1/ssh --with-openssl-includes=/usr/include/openssl --with-ssl-dir=/usr/local/lib64 --with-privsep-user=sshd --with-zlib --with-pam
-
-
- make && make install
-
- # 备份openssh
- mv /etc/init.d/sshd /etc/init.d/sshd1124.bak
- mv /usr/sbin/sshd /usr/sbin/sshd1124.bak
- mv /etc/ssh/sshd_config /etc/ssh/sshd_config1124.bak
- mv /usr/bin/ssh /usr/bin/ssh1124.bak
-
-
- # 创建软连接
- cp contrib/redhat/sshd.init /etc/init.d/sshd
- ln -s /usr/local/myssh_9.5p1/sbin/sshd /usr/sbin/sshd
- ln -s /usr/local/myssh_9.5p1/ssh/sshd_config /etc/ssh/sshd_config
- ln -s /usr/local/myssh_9.5p1/bin/ssh /usr/bin/ssh
-
- # 复制sshd启动脚本
- # 允许root用户远程连接
- #sed -i '20a PermitRootLogin yes' /usr/local/myssh_9.3p1/ssh/sshd_config
-
- # 避开绿盟安全扫描
- echo "Protocol 2" >> /usr/local/myssh_9.3p1/ssh/sshd_config
- echo "Banner /etc/ssh_banner" >> /usr/local/myssh_9.3p1/ssh/sshd_config
- # 禁止dns解析
- sed -i 's/#UseDNS no/UseDNS no/g' /usr/local/myssh_9.3p1/ssh/sshd_config
-
- # 不移走的话影响启动
- mv /usr/lib/systemd/system/sshd.service /root/
- chkconfig sshd on
-
- # 重启sshd (默认不许root登录 )
- systemctl restart sshd
声明:本文内容由网友自发贡献,不代表【wpsshop博客】立场,版权归原作者所有,本站不承担相应法律责任。如您发现有侵权的内容,请联系我们。转载请注明出处:https://www.wpsshop.cn/w/花生_TL007/article/detail/285736
推荐阅读
相关标签
