2. Extract the package: # tar -xvf openssh-<version>.tar.gz
3. Take a note of current SSH installation on the server by executing the following commands:
# which ssh
# rpm -qa | grep ssh
# rpm -qf `which ssh`
Also take a backup of /etc/ssh folder.
4. Go to /usr/local/openssh-<version no>/
5. Compile the openssh package as follows:
# ./configure --with-kerberos5 --with-pam --with-md5-passwords
6. make
7. make install
8. Check if the system is using the newly compiled openssh package by running the 'which' and 'ssh -v' command.
9. Manually link the older version of 'ssh' command to new version:
# mv /usr/sbin/ssh /usr/sbin/ssh_old
# ln -s /usr/local/bin/ssh /usr/sbin/ssh
2nd Method (by overriding existing SSH config)
1. Download the latest openssh package from http://www.openssh.org/ under /usr/local.
2. Extract the package: # tar -xvf openssh-<version>.tar.gz
3. Take a note of current SSH installation on the server by executing the following commands:
# which ssh
# rpm -qa | grep ssh
# rpm -qf `which ssh`
Also take a backup of /etc/ssh folder.
4. Go to /usr/local/openssh-<version no>/
5. Compile the openssh package as follows:
./configure --prefix=/usr --sysconfdir=/etc/ssh --with-ssl-dir=/opt/openssl-0.9.8e --with-pam --with-kerberos5 --with-md5-passwords --with-tcp-wrappers
6. make
7. make install
8. Check if the system is using the newly compiled openssh package by running the 'which' and 'ssh -v' command.
Hi, thanks for the great detailed instructions above.
ReplyDeleteI did the upgrade with the following commands:-
"./configure --prefix=/opt/ssh5_8 --sysconfdir=/etc/ssh5_8"
Then I ran the following commands:
make
make install
------
My question is, where and what other things should I do to enable the system to use the new SSH version rather than the old version?
The reason I am doing the above is because I want to be sure that the new version is working fine. If it's not, I can always revert to the old version first.
hi, when i tried to upgrade this error came
ReplyDelete" OpenSSL headers missing - please install first or check config.log "
unable to run make command kindly suggest
ReplyDeleteunable to run make command kindly suggest
ReplyDeleteGood info. Lucky me I ran across your blog by accident (stumbleupon).
ReplyDeleteI've saved it for later!
Feel free to surf to my blog - payday loan
why cannot we use rpm -uvh to upgrade the openssh
ReplyDeleteCONFIG_H -c cipher.c -o cipher.o
ReplyDeletecipher.c: In function âcipher_get_keyivâ:
cipher.c:631: warning: implicit declaration of function âEVP_CIPHER_CTX_ivâ
cipher.c:631: warning: passing argument 2 of âmemcpyâ makes pointer from integer without a cast
/usr/include/bits/string3.h:49: note: expected âconst void * __restrict__â but argument is of type âintâ
cipher.c: In function âcipher_set_keyivâ:
cipher.c:677: warning: implicit declaration of function âEVP_CIPHER_CTX_iv_noconstâ
cipher.c:677: warning: passing argument 1 of âmemcpyâ makes pointer from integer without a cast
/usr/include/bits/string3.h:49: note: expected âvoid * __restrict__â but argument is of type âintâ
cipher.c: In function âcipher_get_keycontextâ:
cipher.c:708: error: request for member âcipherâ in something not a structure or union
cipher.c:711: error: request for member âcipher_dataâ in something not a structure or union
cipher.c: In function âcipher_set_keycontextâ:
cipher.c:727: error: request for member âcipherâ in something not a structure or union
cipher.c:728: error: request for member âcipher_dataâ in something not a structure or union
make: *** [cipher.o] Error 1