openssh - Free version of the SSH protocol suite
HOWTO
| Web site: | https://www.openssh.com/portable.html |
| Repository: | https://anongit.mindrot.org/openssh.git |
| Wikipedia: | https://en.wikipedia.org/wiki/OpenSSH |
ChangeLog
2024-03-17 - 9.6p1 -> 9.7p1 2023-12-28 - 9.5p1 -> 9.6p1 2023-10-04 - 9.4p1 -> 9.5p1 - X links http to https - Removed a very old note about Slackware 7.0 and having to add --use-md5-passwords, which is no longer a configure flag - Removed an old note about a patch for OpenSSL 1.1.0 2023-09-23 - 9.3p2 -> 9.4p1 2023-08-05 - 9.2p1 -> 9.3p2 2023-02-15 - 9.1p1 -> 9.2p1 2022-11-10 - 9.0p1 -> 9.1p1 2022-06-19 - 8.8p1 -> 9.0p1 - Added release # for Slackware 15.0, removed 13.37 2021-12-25 - 8.7p1 -> 8.8p1 2021-09-14 - 8.6p1 -> 8.7p1 2021-04-19 - 8.4p1 -> 8.6p1 - Added Wikipedia link - Added link to libedit HOWTO 2021-02-25 - 8.2p1 -> 8.4p1 2020-03-29 - 8.0p1 -> 8.2p1 - http -> https for Kerberos, S/Key, editline, libedit - http://www.gnome.org/ -> https://gnome.org/ - Removed sha1sum verification 2019-04-18 - 7.9p1 -> 8.0p1 - Home page URL http to https 2018-12-20 - 7.7p1 -> 7.9p1 - Updated to use CDN URL for download 2018-08-05 - 7.3p1 -> 7.7p1 2016-08-03 - 7.2p2 -> 7.3p1 - Removed Slackware package notes for 13.0, 13.1 2016-07-21 - 7.1p2 -> 7.2p2 - Updated Slackware packages note with 14.2, removed 12.x - Removed md5sum, added sha256 sum with notes about being base64 encoded - Moved uninstall notes to the bottom - Added config backup when /etc/ssh does not exist (i.e. it's in /usr/local/etc) 2016-01-18 - 7.1p1 -> 7.1p2 2015-10-26 - 6.9p1 -> 7.1p1 2015-07-08 - 6.8p1 -> 6.9p1 2015-05-13 - 6.7p1 -> 6.8p1 - Removed really old, probably no longer necessary prerequisite links to X, net-tools, procps - Changed S/Key URL, which is still listed in INSTALL but has been 404 or unresolvable for some time, from: http://www.sparc.spb.su/solaris/skey/ to: http://en.wikipedia.org/wiki/S/KEY - Changed PRNGD URL from: http://www.aet.tu-cottbus.de/personen/jaenicke/postfix_tls/prngd.html to: http://prngd.sourceforge.net/ - Changed EGD URL from: http://www.lothar.com/tech/crypto/ to: http://egd.sourceforge.net/ - Added prerequisite link to ldns - Added prerequisite links to two libedits - Removed notes about /etc/hosts.allow and /etc/hosts.deny 2015-02-26 - 6.6p1 -> 6.7p1 - Removed use of --with-tcp-wrappers, support for it has been removed 2014-04-09 - 6.4p1 -> 6.6p1 - Make sshd_config only 600 (but ssh_config must be 644) 2013-12-05 - 6.1p1 -> 6.4p1 - Updated Slackware note for 14.1 2012-12-25 - 6.0p1 -> 6.1p1 - Updated Slackware note for 14.0 - Pass --mandir=/usr/man to configure (to avoid /usr/share/man) 2012-05-09 - 5.9p1 -> 6.0p1 2012-02-24 - 5.8p2 -> 5.9p1 2011-07-05 - 5.6p1 -> 5.8p2 - Updated Slackware note for 13.37, removed 11.0 and 12.0 2010-09-02 - 5.4p1 -> 5.6p1 - Updated Slackware note to 13.1 2010-03-08 - 5.3p1 -> 5.4p1 - Even though 'make install' will not overwrite, moved the back up existing config part to before that 2010-01-09 - 5.2p1 -> 5.3p1 - Updated Slackware note to 13.0 2009-07-07 - Added note about --with-ssl-dir - Changed my englanders.cc links to englanders.us - Fixed a typo: "lik e" -> "like" - Updated various config file notes 2009-02-25 - 5.0p1 -> 5.2p1 - Updated Slackware note for 12.2, removed older than 11.0 2008-07-03 - 4.9p1 -> 5.0p1 (includes fix for CVE-2008-1483) - Updated Slackware note for 12.1 2008-04-03 - 4.7p1 -> 4.9p1 2007-09-05 - 4.6p1 -> 4.7p1 - Removed gawk, sed links (now at the top) - Added link to mirrors list 2007-03-13 - 4.5p1 -> 4.6p1 2006-12-01 - 4.4p1 -> 4.5p1 2006-10-12 - 4.3p2 -> 4.4p1 - Added versions that come with Slackware - Updated PAM notes 2006-04-07 - Only try to create and chown /var/empty if it's not already there, Slack 10.2 has it and it's root:root 2006-02-15 - 4.2p1 -> 4.3p2 - Fixed the prefix (/usr/local -> /usr) in the init script 2005-11-02 - Updated sh-utils prerequisite link to include " or coreutils" - Updated XFree86 prerequisite link to include " or X.org" 2005-09-08 - 4.1p1 -> 4.2p1 (includes security fixes) - su before trying to create a sshd user or group 2005-06-30 - 4.0p1 -> 4.1p1 - Moved source directory (see note <a href="howtos.php?msd">here</a>) - Rearranged options to shut up the new version of find - Run chown -R root:root . when $UID = 0 - Added backup of config files 2005-03-25 - 3.8.1p1 -> 4.0p1 - Changed md5sum verification to output OK (or not) - root.root -> root:root - Removed make, gcc, binutils, fileutils/coreutils links 2004-04-20 - 3.8p1 -> 3.8.1p1 - Instead of running mkdir then chmod 755 to create /var/empty, just run mkdir -m 0755 - Changed the md5sum link from textutils to coreutils 2004-03-09 - 3.7.1p2 -> 3.8p1 - Added a link to coreutils (next to the fileutils prereq) - Changed the download URL from the NY, NY mirror (unresponsive): ftp://ftp.stealth.net/pub/mirrors/ftp.openssh.com/pub/OpenBSD/OpenSSH/portable/ to the Fairfax, VA mirror (looks like a UUnet address): ftp://openbsd.secsup.org/pub/openbsd/OpenSSH/portable/ - Copy the config files to /etc/ssh with cp -p (preserving the last modified date/time) 2003-09-23 - 3.7.1p1 -> 3.7.1p2 <a href="http://www.openssh.com/txt/sshpam.adv">http://www.openssh.com/txt/sshpam.adv</a> 2003-09-17 - 3.6.1p2 -> 3.7.1p1 <a href="http://www.cert.org/advisories/CA-2003-24.html">http://www.cert.org/advisories/CA-2003-24.html</a> <a href="http://www.openssh.com/txt/buffer.adv">http://www.openssh.com/txt/buffer.adv</a> - Added verification with md5sum - Create ~/installed with mode 700 - Minor update to the gpg verification part - Added note about restarting sshd if you're ssh'd into the machine you're upgrading - Added more prerequisites, obvious ones like make, gcc, etc., and others that come from utils that configure looks for - Removed --with-pam from the configure line (I have more PAM-free boxen now than ones with PAM), updated the notes about PAM - Changed prefix to /usr 2003-07-30 - Changed the home page to the portable page, because that's the one we're using... 2003-07-24 - Manually remove /etc/ssh after removepkg, it'll leave it behind because some files are named *.new in the package so they don't overwrite existing files 2003-04-30 - 3.6.1p1 -> 3.6.1p2 See these URLs for more information about security fixes: <a href="http://lab.mediaservice.net/advisory/2003-01-openssh.txt">http://lab.mediaservice.net/advisory/2003-01-openssh.txt</a> <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0190">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0190</a> - Damien Miller posted the md5sum for 3.6p1 in the announcement for some reason, so I removed md5sum verification (can't find md5sums on the site anywhere) 2003-04-14 - Set the part that runs groupadd to add it with gid 33 (like Slack uses), same for useradd (uid 33) - Moved the part that creates /var/empty to after compiling/installing the source because removepkg will kill /var/empty - Added part to the end about rc.sshd 2003-04-03 - 3.5p1 -> 3.6.1p1 (bugfixes and _security_updates_) Upgrade openssl to 0.9.7a + the two patches before you install/updgrade this 2003-03-05 - Added --with-ipv4-default to configure to prevent it from trying IPv6 (and the kernel from trying to load net-pf-10) 2003-02-21 - Set to only add user and group if they don't already exist - Added note about LDAP - Seperated and updated gpg verification - Updated removal of old versions - Set to re-use installed/openssh-... if it exists 2002-10-17 - 3.4p1 -> 3.5p1 - Added building of tcp wrappers support - Added links to prerequisite howtos 2002-08-02 - Added md5 and gpg verification
List of HOWTOs
Web page itself last updated: 2023-12-20 8:06pm (EDT -0400)
Copyright © 2001-2024 Jason Englander. All Rights reserved.
Copyright © 2001-2024 Jason Englander. All Rights reserved.
![[HTML5]](HTML5_Logo_64-black.png){kind=logo}
