qLinux
… a distribution study


<< Prev
Wget-1.21.2

Next >>
System Configuration


OpenSSH-8.8p1

Reference: OpenSSH-8.8p1. Apply a patch to fix the build system:

patch -Np1 -i openssh-8.8p1-bld-20220307.patch

Apply a patch to fix the sources:

patch -Np1 -i openssh-8.8p1-bld-20220321.patch

Add user and group:

groupadd -g 22 sshd
useradd -g 22 -d /qlnx/dev/null -s /qlnx/bin/nologin sshd

Configure openssh:

./configure --prefix=/qlnx      \
            --sbindir=/qlnx/bin \
            --libexecdir=/qlnx/bin/libexec \
            --sysconfdir=/qlnx/etc/ssh  \
            --mandir=/qlnx/man \
            --with-pid-dir=/qlnx/run \
            --with-cflags="-I/libs/inc" \
            --with-ldflags="-L/libs/lib" \
            --with-privsep-path=/qlnx/var/ssh \
            --disable-utmp --disable-utmpx \
            --disable-wtmp --disable-wtmpx

–with-cflags=“-I/libs/inc”, –with-ldflags=“-L/libs/lib”
    This makes sure that our openssl headers and libraries are found1).

–with-privsep-path=/qlnx/var/ssh
    Set the chtoot privilege separation path (default:  /var/empty )

–disable-utmp, –disable-wtmp, …
    Explicitly disable these features and their “x” pendants.

make
make install

To install  ssh-copy-id  do the following steps:

cd contrib
chmod 755 ssh-copy-id
cp -v ssh-copy-id /qlnx/bin/
cp -v ssh-copy-id.1 /qlnx/man/man1/

Make  sshd  executable by root only:

chmod 0740 /qlnx/bin/sshd

<< Prev
Wget-1.21.2

Next >>
System Configuration

1)
Alternative use  –without-openssl  to use internal crypt support