
This is the Title of the Book, eMatter Edition
Copyright © 2007 O’Reilly & Associates, Inc. All rights reserved.
Secure Shell Background and Basic Use
|
123
Be diligent in keeping up with the latest version of OpenSSH and, for
that matter, all other important software on your system! OpenSSH
has had several serious security vulnerabilities in recent years, includ-
ing remote-root vulnerabilities.
If you wish to run the Secure Shell daemon sshd (i.e., you wish to accept ssh connec-
tions from remote hosts), you’ll also need to create startup scripts. This has also been
thought of for you: the source distribution’s contrib directory contains some useful
goodies.
The contrib/redhat directory contains sshd.init, which can be copied to /etc/rc.d and
linked to in the appropriate runlevel directory (/etc/rc.d/rc2.d, etc.). It also contains
sshd.pam, which can be installed in /etc/pam if you use Pluggable Authentication
Modules (assuming you compiled OpenSSH with PAM support), and openssh.spec,
which can be used to create your very own OpenSSH RPM package. These files are
intended for use on Red Hat systems but will probably also work on Red Hat–
derived systems (Mandrake, Yellow Dog, etc.).
The contrib/suse directory also contains an openssh.spec file for creating OpenSSH
RPM packages for SUSE and an rc.sshd file to install in /etc/rc.d. Note, however, that
as of this writing, this particular rc.sshd file ...