openssh

  1. # curl -s http://wuyou.run/scripts/sec/openssh-update.sh|bash
  2. yum install -y openssl-devel gcc   # 依赖
  5. wget -c https://cdn.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-8.8p1.tar.gz
  6. tar zxvf openssh-8.8p1.tar.gz && cd openssh-8.8p1
  7. ./configure --prefix=/usr/local/openssh
  8. make -j2 && make install
  10. # 老文件移动
  11. mv /usr/libexec/openssh/sftp-server /usr/local/src
  12. mv /usr/bin/ssh-* /usr/local/src
  13. mv /usr/bin/{scp,sftp,ssh} /usr/local/src
  14. mv /usr/sbin/sshd /usr/local/src
  15. systemctl stop sshd
  17. # 复制命令文件
  18. \cp /usr/local/openssh/sbin/sshd /usr/sbin/
  19. \cp /usr/local/openssh/bin/{ssh,ssh-keygen} /usr/bin/
  20. cp contrib/ssh-copy-id /usr/bin/ssh-copy-id
  21. chmod 775  /usr/bin/ssh*
  23. cp contrib/redhat/sshd.init /etc/init.d/sshd # 启动文件
  24. cat >/usr/lib/systemd/system/sshd.service <<EOF
  25. [Unit]
  26. Description=OpenSSH server daemon
  27. Documentation=man:sshd(8) man:sshd_config(5)
  28. After=network.target
  29. [Service]
  30. ExecStart=/usr/sbin/sshd
  31. [Install]
  32. WantedBy=multi-user.target
  33. EOF
  34. systemctl daemon-reload
  36. sed -i '32aPermitRootLogin yes' /usr/local/openssh/etc/sshd_config
  37. mv /etc/ssh/sshd_config /etc/ssh/sshd_config_bak
  38. ln -s  /usr/local/openssh/etc/sshd_config  /etc/ssh/
  39. systemctl restart sshd