[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] RaQ3-RaQ4-OpenSSH-3.4p1-1.pkg
- Subject: Re: [cobalt-security] RaQ3-RaQ4-OpenSSH-3.4p1-1.pkg
- From: Tim Dunn <tdunn@xxxxxxxxxxxxxxxxxxx>
- Date: Thu, 27 Jun 2002 11:13:47 -0700 (PDT)
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
>> [let's say] I'm logged into ssh. I do a ./compile, make and make
>> install without having to logout or shutdown the existing daemon.
> NO! That's NOT what I said, Jay. This discussion was about the
> installation of the OpenSSH PKG file through SSH. You can do
> *that* just fine.
If you're a 'compile from source' sort of person, here's the steps I'd
recommend:
0) dowload the tarballs
1) re-enable admin telnet (cross your fingers) maybe use tcpwrappers
to only accept 23 from your address. details left up to reader...
2) sh /etc/rc.d/init.d/stop
3) mv /usr/sbin/sshd /usr/sbin/sshd.GOOD
4) ./configure && make && make test
5) if everything looks kosher, make install
6) ./ssh -v localhost (just to test the installation, via loopback)
7) test the external interface as well by starting a new client from
your client machine
8) cleanup. rm /usr/sbin/sshd.GOOD and turn off admin telnet
9) Say prayer of thanks to diety of choice. =)
tim
--
Mechanical Engineers build weapons. Civil Engineers build targets.