Securities Software (Network Services).Linux OpenSSH Client/Server
Step 2
Now, we must compile and install OpenSSH on the Server:
[root@deep openssh-1.2.3]# make
[root@deep openssh-1.2.3]# make install
[root@deep openssh-1.2.3]# make host-key
[root@deep openssh-1.2.3]# install -m644 contrib/redhat/sshd.pam /etc/pam.d/sshd
The “make” command will compile all source files into executable binaries, and “make install” will install the binaries and any supporting files into the appropriate locations. The “make host-key” command will generate a host key, and finally the “install” command will install the PAM support for Red Hat Linux, which is now more functional than the popular packages of commercial ssh-1.2.x.
Cleanup after work
[root@deep /]# cd /var/tmp
[root@deep tmp]# rm -rf openssh-version/ openssh-version.tar.gz
The “rm” command as used above will remove all the source files we have used to compile and install OpenSSH. It will also remove the OpenSSH compressed archive from the 7var/tmp” directory.
Configurations
All software we describe in this book has a specific directory and subdirectory in a tar compressed archive named “floppy.tgz” containing file configurations for each specific program. If you get this archive file, you won’t be obliged to reproduce the different configuration files below manually or cut and paste them to create your configuration files. Whether you decide to copy manually or get the files made for your convenience from the archive compressed files, it will be to your responsibility to modify, adjust for your needs and place the files related to OpenSSH software in their appropriate places on your server, as shown below. The server configuration file archive to download is located at the following Internet address: http://www.openna.com/books/floppy.tgz
• To run OpenSSH Client/Server, the following files are required and must be created or copied to the appropriate directories on your server.
Copy the ssh_config file to the 7etc/ssh/” directory. Copy the sshd_config file to the 7etc/ssh/” directory. Copy the sshd file to the 7etc/pam.d/” directory.
You can obtain the configuration files listed below on our floppy.tgz archive. Copy the following files from the decompressed floppy.tgz archive to the appropriate places, or copy them directly from this book to the concerned file.
Configure the “/etc/ssh/ssh_config” file
The 7etc/ssh/ssh_config” file is the system-wide configuration file for OpenSSH which allows you to set options that modify the operation of the client programs. The file contains keyword-value pairs, one per line, with keywords being case insensitive. Here are the most important keywords to configure your “ssh” for top security; a complete listing and/or special requirements are available in the man page for ssh (1).