【Linux】opencloudos系统 OpenSSH升级到 OpenSSH_9.8P1

ssh -V
whereis ssh

mv /etc/ssh /etc/ssh.bak
mv /usr/bin/ssh /usr/bin/ssh.bak
mv /usr/bin/ssh-keygen /usr/bin/ssh-keygen.bak
mv /usr/sbin/sshd /usr/sbin/sshd.bak
mv /etc/pam.d/sshd /etc/pam.d/sshd.bak

wget https://cdn.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-9.8p1.tar.gz
tar -xf openssh-9.8p1.tar.gz
cd openssh-9.8p1/

rpm -qa | grep openssh 
rpm -e --nodeps `rpm -qa | grep openssh`   #此命令会将找到的openssh相关的rpm包强制删除。
rpm -qa | grep openssh  

yum groupinstall "Development Tools"
yum install -y openssl-devel zlib-devel pam-devel

./configure --prefix=/usr/local/openssh9p6 --sysconfdir=/etc/ssh --with-pam --with-zlib
#如出现类似这类错误，说明系统当前的openssl版本较低，需要更高版本的openssl
#error: OpenSSL >= 1.1.1 required (have "100004df (OpenSSL 1.0.2k-fips 26 Jan 2017)")
#由于本次操作环境是opencloudos9.2环境，该环境自带的openssl版本是OpenSSL 3.0.12，已满足对openssh9.8的支持，所以不在升级opensslp
make
make install

cp /usr/local/openssh9p6/sbin/sshd /usr/sbin/sshd
cp /usr/local/openssh9p6/bin/ssh /usr/bin/ssh
cp /usr/local/openssh9p6/bin/ssh-keygen /usr/bin/ssh-keygen
cp -p contrib/redhat/sshd.init /etc/init.d/sshd 
chmod +x /etc/init.d/sshd

PermitRootLogin yes  #允许root用户通过SSH登录到系统
PubkeyAuthentication yes   #启用公钥身份验证
PasswordAuthentication yes  #启用密码身份验证

systemctl enable sshd
systemctl restart sshd
sshd -V