# 防火墙放行23端口
firewall-cmd --zone=public --add-port=23/tcp --permanent
firewall-cmd --reload
firewall-cmd --list-all

### 验证telnet，确认可连接
telnet 10.128.136.138

#下载编译依赖包
# yum install -y gcc gcc-c++ glibc make automake autoconf zlib zlib-devel pcre-devel  perl perl-Test-Simple --downloadonly --downloaddir=/root/telnet --downloadonly --downloaddir=/root/openssh_fix/relypackage
cd /root/openssh_fix/relypackage
yum localinstall *.rpm -y

# yum install openssl openssl-devel --downloadonly --downloaddir=/root/ssl
cd /root/openssh_fix/ssl
yum localinstall *.rpm -y

# 停止openssh服务
systemctl stop sshd

# 备份
cp -a /etc/ssh /etc/ssh.bak
cp -a /usr/sbin/sshd /usr/sbin/sshd.bak
cp -a /usr/bin/ssh /usr/bin/ssh.bak

# 卸载
[root@localhost telnet]# rpm -qa | grep openssh
openssh-clients-7.4p1-16.el7.x86_64
openssh-7.4p1-16.el7.x86_64
openssh-server-7.4p1-16.el7.x86_64
[root@localhost telnet]# rpm -e `rpm -qa | grep openssh` --nodeps
[root@localhost telnet]# rpm -qa | grep openssh

cd /root/openssh_fix/openssh9
tar -zxvf openssh-9.0p1.tar.gz
cd openssh-9.0p1
cat INSTALL
# 配置编译
./configure --prefix=/usr/local/openssh --with-ssl-dir=/usr/local/openssl --with-zlib
# 编译
make
# 安装
make install

# 检查旧版本启动文件
ls /usr/lib/systemd/system/ssh*
rm -f /usr/lib/systemd/system/ssh*

# 拷贝启动脚本
cp contrib/redhat/sshd.init /etc/init.d/sshd

# 建立软连接
ln -s /usr/local/openssh/etc /etc/ssh
ln -s /usr/local/openssh/sbin/sshd /usr/sbin/
ln -s /usr/local/openssh/bin/* /usr/bin/

# 启动并设置开机自启动
systemctl daemon-reload
systemctl start sshd && systemctl enable sshd

# 查看状态，已经是 running 状态了
systemctl status sshd
# 确认版本
ssh -V

vi /usr/local/openssh/etc/sshd_config

PermitRootLogin yes

# 重启
systemctl restart sshd 

systemctl stop telnet.socket
systemctl disable telnet.socket