[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] RaQ3-RaQ4-OpenSSH-3.4p1-1.pkg

Subject: Re: [cobalt-security] RaQ3-RaQ4-OpenSSH-3.4p1-1.pkg
From: Tim Dunn <tdunn@xxxxxxxxxxxxxxxxxxx>
Date: Thu, 27 Jun 2002 11:13:47 -0700 (PDT)
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

>> [let's say] I'm logged into ssh. I do a ./compile, make and make 
>> install without having to logout or shutdown the existing daemon.

> NO! That's NOT what I said, Jay. This discussion was about the 
> installation of the OpenSSH PKG file through SSH. You can do 
> *that* just fine. 

If you're a 'compile from source' sort of person, here's the steps I'd
recommend:

0) dowload the tarballs

1) re-enable admin telnet (cross your fingers)  maybe use tcpwrappers
   to only accept 23 from your address.  details left up to reader...

2) sh /etc/rc.d/init.d/stop

3) mv /usr/sbin/sshd /usr/sbin/sshd.GOOD

4) ./configure && make && make test

5) if everything looks kosher, make install

6) ./ssh -v localhost (just to test the installation, via loopback)

7) test the external interface as well by starting a new client from
   your client machine

8) cleanup.  rm /usr/sbin/sshd.GOOD and turn off admin telnet

9) Say prayer of thanks to diety of choice. =)

tim

-- 
Mechanical Engineers build weapons.  Civil Engineers build targets.

References:
- Re: [cobalt-security] RaQ3-RaQ4-OpenSSH-3.4p1-1.pkg
  - From: Michael Stauber

Prev by Date: Re: [cobalt-security] RaQ3-RaQ4-OpenSSH-3.4p1-1.pkg
Next by Date: [cobalt-security] OpenSSH build on a remote server
Previous by thread: Re: [cobalt-security] RaQ3-RaQ4-OpenSSH-3.4p1-1.pkg
Next by thread: Re: [cobalt-security] RaQ3-RaQ4-OpenSSH-3.4p1-1.pkg

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index