Visit Our UNIX and Linux User Community


How to upgrade SSH/SSL on AIX servers?


 
Thread Tools Search this Thread
Operating Systems AIX How to upgrade SSH/SSL on AIX servers?
# 1  
Old 05-05-2014
How to upgrade SSH/SSL on AIX servers?

Hello,

Can you please give some info on how to upgrade the SSH/SSL on AIX LPARs?

we've the below version on our servers.

Code:
[root@mylpar]/>lslpp -l | grep -i ssh
  openssh.base.client     5.8.0.6102  COMMITTED  Open Secure Shell Commands
  openssh.base.server     5.8.0.6102  COMMITTED  Open Secure Shell Server
  openssh.license         5.8.0.6102  COMMITTED  Open Secure Shell License
  openssh.man.en_US       5.8.0.6102  COMMITTED  Open Secure Shell
  openssh.msg.en_US       5.8.0.6102  COMMITTED  Open Secure Shell Messages -
  openssh.base.client     5.8.0.6102  COMMITTED  Open Secure Shell Commands
  openssh.base.server     5.8.0.6102  COMMITTED  Open Secure Shell Server
 
[root@mylpar]/>lslpp -l | grep ssl
  openssl.base            0.9.8.1800  COMMITTED  Open Secure Socket Layer
  openssl.man.en_US       0.9.8.1800  COMMITTED  Open Secure Socket Layer
  openssl.base            0.9.8.1800  COMMITTED  Open Secure Socket Layer

[root@mylpar]/>ssh -V
OpenSSH_5.8p1, OpenSSL 0.9.8r 8 Feb 2011

Will it be updated, If i upgrade the TL to the latest version. and Can you please suggest where to download these packages related to AIX. Please advise.

Any idea is appreciated.

Thank you.

---------- Post updated at 03:24 PM ---------- Previous update was at 10:49 AM ----------

Just an update to my post/thread. It might be useful for others.

I found below steps online/blog; please correct it if needed.


Steps below to remove current version of openssh and install the new version ( make sure connected through telnet or on console):

1. Make a copy current /etc/ssh directory
# cp -r /etc/ssh /etc/ssh.backup

2. Remove current version of openssh
# installp -u openssh.*

3. Remove all existing versions of openssl using smitty(installp as above)or even rpm

# rpm -qa | grep -i ssl
# rpm -e <openssl label>


OR

# installp -u openssl*

4. Download latest version of openssl and openssh

Please download and install latest OpenSSL

The latest OpenSSH

5. Install openssl and openssh
Both openssl and openssh are installp images.

Use smitty to install openssl first and then openssh.


Here are the detailed installation instructions:

a) Inside the directory where the installp images reside, run 'inutoc' to create table of content file
# inutoc .

b) Use this fast path to access smitty install menu:
Code:
# smitty install_selectable_all 

- Enter the directory where the files reside and hit Return key 
- At the next screen, you are prompted for "software to install" 
-- Hit F4 key to display a list of files to install 
-- Select all relevant files and hit Return key 
-- Change "accept new license agreement" from no to yes 
-- Continue with install

After a successful installation of openssh, the sshd daemon will be active and you will have a working ssh server.

And i found the IBM link for downloading latest ssh/ssl filesets
https://www14.software.ibm.com/webap...o?source=aixbp

Please mark it as SOLVED, in case if the above procedure is correct.

thank you.

Last edited by System Admin 77; 05-05-2014 at 11:59 AM..
# 2  
Old 05-05-2014
This User Gave Thanks to spacebar For This Post:

Previous Thread | Next Thread
Test Your Knowledge in Computers #983
Difficulty: Medium
The first official NetBSD release, NetBSD 0.1, was made on 9 April 1991.
True or False?

10 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

Find active SSH servers w/ ssh keys on LAN

Hi, I am trying to complete my bash script in order to find which SSH servers on LAN are still active with the ssh keys, but i am frozen at this step: #!/bin/bash # LAN SSH KEYS DISCOVERY SCRIPT </etc/passwd \ grep /bin/bash | cut -d: -f6 | sudo xargs -i -- sh -c ' && cat... (11 Replies)
Discussion started by: syrius
11 Replies

2. Red Hat

Force ssl/ssh to use the hosts file

does anyone know how to force ssh/ssl to use the hosts file instead of DNS? I have disabled the DNS servers but ssh still will not resolve a host in the hosts file. thanks in advance for the help! DS (3 Replies)
Discussion started by: derrell simpson
3 Replies

3. AIX

Installing Open SSL on AIX 6.1

Hello, I want to install openssl-1.0.1c-1.aix5.1.ppc.rpm on IBM AIX 6.1 server machine and when I try to install the same as : rpm -ivh openssl-1.0.1c-1.aix5.1.ppc.rpmI get the error saying that it needs the following dependencies : error: failed dependencies: ... (2 Replies)
Discussion started by: gaugeta
2 Replies

4. AIX

ssh interruption after aix os upgrade

Hi Through nimadm (alt_disk_install) we done aix os upgrade in 3 lpars from aix 5.3 to aix 6.1. upgrade was successful. After the upgrade users complained on their ssh keys. Does upgrading aix version affects the user's ssh keys ? If so please suggest on options to correct them. (1 Reply)
Discussion started by: newtoaixos
1 Replies

5. Solaris

How to upgrade firmware for disks inside servers?

Hi All, Recently I'm being request by customer to upgrade firmware for one of the disk but not from storage and is from server it self. The patch no is 116370-15, when I found it, I only see instructions on how to download for storage disks but not for server disks. All guru here please... (0 Replies)
Discussion started by: mailbox80
0 Replies

6. Solaris

Zone Servers Level Upgrade

Hi All, I am planning to do the Solaris level upgrade from "Solaris 10 1/06 s10s_u1wos_19a" to "Solaris 10 10/09 s10s_u8wos_08a" with 7 Non-global zones on it..... I have done Level upgrade for Solaris 10 boxes without Non-global zones..... Can any one let me know, whether it is possible... (8 Replies)
Discussion started by: indradev
8 Replies

7. AIX

How to upgrade AIX Firmware & TL Maintenance Level in AIX

Steps to upgrade AIX TL ( technology Level ) / Maintenance Level in AIX ( including Firmware HMC VIOS ) This article or post covers upgrades for - Hardware Management Console ( HMC ) - Firmware ( also known as microcode ) - VIO ( Virtual I/O Server = PowerVM ) - AIX Version, Technology... (2 Replies)
Discussion started by: filosophizer
2 Replies

8. AIX

Installing SSL certificate on AIX

Hello, I am new in UNIX, and some one asks me to install SSL certificates to allow exchange with an external system. Can someone tell how to install certificate (ex : verisignxxx.cer) on a UNIX server? Many thanks. Tibo (4 Replies)
Discussion started by: tibo51
4 Replies

9. UNIX for Dummies Questions & Answers

SSH/SSL wrapper

My IRC client does not support SSL, so I was wondering if there was any other way to encrypt the information between SSL clients on an IRC network, maybe by using SSH to enter the IRC program or something (it's a command-line program) and passing all the plain-text through SSH first. I tried... (0 Replies)
Discussion started by: guitarscn
0 Replies

10. UNIX and Linux Applications

FTP client for HP-UX that supports SFTP/SSL/SSH

Can anyone recommend some good/reliable FTP clients for HP-UX that support SFTP/SSL/SSH and have a command line interface? They need not be "free" (license). Thanks! (2 Replies)
Discussion started by: maxshop
2 Replies

Featured Tech Videos