...
分类: LINUX
2010-02-21 15:10:05
最近发现redhat 5.4 使用的openssh
server的版本还是4.3p1,这是一个有漏洞的版本,网上没有找到合适的版本,最后决定自己编译一个rpm解决。
必须安装开发环境,如果没
有按照以下步骤安装
# yum install gcc
# yum install openssl-devel
# yum
install pam-devel
# yum install rpm-build
得到openssh server的版本
# wget
#
wget
#
wget -O-
| gpg --import
# gpg openssh-5.2p1.tar.gz.asc
gpg: Signature made
Mon 23 Feb 2009 01:18:28 AM CET using DSA key ID 86FF9C48
gpg: Good
signature from "Damien Miller (Personal Key) "
gpg: WARNING: This key
is not certified with a trusted signature!
gpg: There is no
indication that the signature belongs to the owner.
Primary key
fingerprint: 3981 992A 1523 ABA0 79DB FC66 CE8E CB03 86FF 9C48
制作rpm包
# tar zxvf openssh-5.2p1.tar.gz
# cp
openssh-5.2p1/contrib/redhat/openssh.spec /usr/src/redhat/SPECS/
# cp
openssh-5.2p1.tar.gz /usr/src/redhat/SOURCES/
# cd
/usr/src/redhat/SPECS
# perl -i.bak -pe 's/^(%define
no_(gnome|x11)_askpass)\s+0$/$1 1/' openssh.spec
如果出现zlib版本错误,可以先安装zlib1.2.3 或者使用以下命令解决。
--without-zlib-version-check
建立安装包
# rpmbuild -bb openssh.spec
生成在/usr/src/redhat/RPMS/i386目录下
#
cd /usr/src/redhat/RPMS/`uname -i`
# ls -l
-rw-r--r-- 1 root root
275808 Feb 27 08:08 openssh-5.2p1-1.x86_64.rpm
-rw-r--r-- 1 root root
439875 Feb 27 08:08 openssh-clients-5.2p1-1.x86_64.rpm
-rw-r--r-- 1
root root 277714 Feb 27 08:08 openssh-server-5.2p1-1.x86_64.rpm
安装
#
rpm -Uvh openssh*rpm
Preparing...
########################################### [100%]
1:openssh
########################################### [ 33%]
2:openssh-clients
########################################### [ 67%]
3:openssh-server
########################################### [100%]
# service sshd
restart
