挂载yum源,
[root@localhost /]# cd /etc/yum.repos.d/
[root@localhost /]# mv redhat.repo redhat.repo.old (重命名)
[root@localhost /]# touch /etc/yum.repos.d/local.repo (新建一个.repo)
[oel7]
name = Enterprise Linux 7.5 DVD
baseurl=file:///media/disk/
gpgcheck=0
enabled=1
[root@localhost yum.repos.d]# yum clean all
[root@localhost yum.repos.d]# yum install gcc* -y
将三个ssh升级包用sftp传到/usr/local/src/目录,解压
[root@localhost src]# tar xf openssh-8.2p1.tar.gz -C /usr/local/src/
[root@localhost src]# tar xf openssl-1.1.1l.tar.gz -C /usr/local/src/
[root@localhost src]# tar xf zlib-1.2.11.tar.gz -C /usr/local/src/
[root@localhost src]# ll /usr/local/src/
[root@localhost src]# cd /usr/local/src/
[root@localhost src]#chown root:root *
[root@localhost src]# cd /usr/local/src/zlib-1.2.11/
[root@localhost zlib-1.2.11]# ./configure --shared
[root@localhost zlib-1.2.11]# make install
[root@localhost zlib-1.2.11]# cp zutil.h /usr/local/include
[root@localhost zlib-1.2.11]#cp zutil.c /usr/local/include
[root@localhost zlib-1.2.11]#
[root@localhost zlib-1.2.11]# cd /usr/local/src/openssl-1.1.1l/
[root@localhost openssl-1.1.1l]#./config shared zlib
[root@localhost openssl-1.1.1l]#make -j 4 && make install
[root@localhost openssl-1.1.1l]#mv /usr/bin/openssl /usr/bin/openssl.bak
[root@localhost openssl-1.1.1l]#mv /usr/include/openssl /usr/include/openssl.bak
[root@localhost openssl-1.1.1l]#find / -name openssl
[root@localhost openssl-1.1.1l]#ln -s /usr/local/bin/openssl /usr/bin/openssl
[root@localhost openssl-1.1.1l]#ln -s /usr/local/include/openssl /usr/include/openssl
[root@localhost openssl-1.1.1l]# echo "/usr/local/lib64/" >> /etc/ld.so.conf
[root@localhost openssl-1.1.1l]# ldconfig
[root@localhost openssl-1.1.1l]# openssl version
[root@localhost openssl-1.1.1l]# cd /usr/local/src/openssh-8.2p1/
[root@localhost openssh-8.2p1]# ./configure --prefix=/usr/local/openssh --sysconfdir=/etc/ssh --with-ssl-dir=/usr/local/ssl --with-zlib=/usr/local/zlib
[root@localhost openssh-8.2p1]#make -j 4 && make install
[root@localhost openssh-8.2p1]# chmod 600 /etc/ssh/ssh_host_rsa_key
[root@localhost openssh-8.2p1]# chmod 600 /etc/ssh/ssh_host_ecdsa_key
[root@localhost openssh-8.2p1]# chmod 600 /etc/ssh/ssh_host_ed25519_key
[root@localhost openssh-8.2p1]# ssh-keygen -t rsa -f /etc/ssh/ssh_host_rsa_key
[root@localhost openssh-8.2p1]# ssh-keygen -t ecdsa -f /etc/ssh/ssh_host_ecdsa_key
[root@localhost openssh-8.2p1]# ssh-keygen -t ed25519 -f /etc/ssh/ssh_host_ed25519_key
[root@localhost openssh-8.2p1]# mv /usr/sbin/sshd /usr/sbin/sshd.bak
[root@localhost openssh-8.2p1]# cp -rf /usr/local/openssh/sbin/sshd /usr/sbin/sshd
[root@localhost openssh-8.2p1]# mv /usr/bin/ssh /usr/bin/ssh.bak
[root@localhost openssh-8.2p1]# cp -rf /usr/local/openssh/bin/ssh /usr/bin/ssh
[root@localhost openssh-8.2p1]# mv /usr/bin/ssh-keygen /usr/bin/ssh-keygen.bak
[root@localhost openssh-8.2p1]# cp -rf /usr/local/openssh/bin/ssh-keygen /usr/bin/ssh-keygen
[root@localhost openssh-8.2p1]# systemctl stop sshd.service
[root@localhost openssh-8.2p1]# rm -rf /lib/systemd/system/sshd.service
[root@localhost openssh-8.2p1]# systemctl daemon-reload
[root@localhost openssh-8.2p1]# cp /usr/local/src/openssh-8.2p1/contrib/redhat/sshd.init /etc/init.d/sshd
[root@localhost openssh-8.2p1]# /etc/init.d/sshd restart
[root@localhost openssh-8.2p1]#openssl version
[root@localhost openssh-8.2p1]#ssh -V
