yum install gcc zlib-devel pam-devel
wget https://www.openssl.org/source/openssl-1.1.1k.tar.gz -O /usr/local/src
tar -xf /usr/local/src/openssl-1.1.1k.tar.gz -C /usr/local/src/ && cd /usr/local/src/openssl-1.1.1k
./config --prefix=/usr/local/openssl threads zlib shared
make -j 40
make install
chmod -R 755 /usr/local/openssl
sed -i ‘/local\/openssl\/lib/d‘ /etc/ld.so.conf # 第一次升级没有,但是第二次升级就需要删掉了。
echo "/usr/local/openssl/lib" >> /etc/ld.so.conf
ldconfig
wget https://mirrors.tuna.tsinghua.edu.cn/OpenBSD/OpenSSH/portable/openssh-8.5p1.tar.gz -O /usr/local/src/openssh-8.5p1.tar.gz
chmod 600 /etc/ssh/ssh_host_ed25519_key /etc/ssh/ssh_host_ecdsa_key /etc/ssh/ssh_host_rsa_key
sed -i ‘/GSSAPIAuthentication/s@^@#@‘ /etc/ssh/sshd_config
sed -i ‘/GSSAPICleanupCredentials/s@^@#@‘ /etc/ssh/sshd_config
tar -xf /usr/local/src/openssh-8.5p1.tar.gz -C /usr/local/src/ && cd /usr/local/src/openssh-8.5p1
./configure -prefix=/usr -sysconfdir=/etc/ssh -with-ssl-dir=/usr/local/openssl -with-zlib -with-pam-with-md5-passwords --with-pam --without-zlib-version-check
make -j 40
make install
sed -i ‘/#PasswordAuthentication yes/s/#//‘ /etc/ssh/sshd_config
sed -i ‘/#PermitRootLogin yes/s/#//‘ /etc/ssh/sshd_config
sed -i ‘s/^Type/#&/‘ /usr/lib/systemd/system/sshd.service # 若不删除或注释此行会导致SSHD服务无限重启。
systemctl daemon-reload
systemctl restart sshd
]# ssh -V
OpenSSH_8.5p1, OpenSSL 1.1.1k 25 Mar 2021
原文:https://www.cnblogs.com/liy36/p/14885360.html