SSH Upgrade in AIX :
First login to HMC, and open an console for the server which you want to upgrade the SSH/SSL.
Then, execute the 'vtmenu' command, then select the particular frame & then particular server.
Login with your username and password then 'sudo su -'
// Take the backup of ssh config file into your home directory
ls -l /usr/local/etc/*_config
cp -p /usr/local/etc/*_config ~chinsrik/
ls -l ~chinsrik/*_config
// Check the current version of SSH
ssh -V
OpenSSH_4.7p1, OpenSSL 0.9.8g 19 Oct 2007
// List all packages installed (SSH)
lslpp -lv|grep ssh
USFSossh-52.rte 4.7.1.1 COMMITTED Openssh V4.7p1 none
// List all packages installed (SSL)
lslpp -lv|grep open
openssl.base 0.9.8.1100 COMMITTED Open Secure Socket Layer
// Remove the older version of SSH/SSL.
smitty remove
* SOFTWARE name [USFSossh-52.rte] +
PREVIEW only? (remove operation will NOT occur) no +
REMOVE dependent software? no +
EXTEND file systems if space needed? no +
DETAILED output? yes +
.
.
// Create a directory in your home directory named ssh
mkdir ~chinsrik/ssh
chmod 750 ~chinsrik/ssh
// Copy/Move the tar file.
mv ~chinsrik/ope*.tar.* ~chinsrik/ssh
cd ~chinsrik/ssh
// Extract the tar files in the current directory.
gunzip openssl.0.9.8.1103.tar.Z
gunzip openssh_5.2p1_aix61.tar.z
tar -xvf openssl.0.9.8.1103.tar
tar -xvf openssh_5.2p1_aix61.tar
// Create the TOC (Table of Contents) file in current directory (~chinsrik/ssh)
inutoc .
// Go to the ~chinsrik/ssh directory and execute following.
smitty installp
Install Software
* INPUT device / directory for software [.] // '.' for current directory and press Enter
// Put 'YES' to 'DETAILED output' & 'ACCEPT new license agreements' fields, remaining all are same.
* SOFTWARE to install [_all_latest] +
PREVIEW only? (install operation will NOT occur) no +
COMMIT software updates? yes +
SAVE replaced files? no +
AUTOMATICALLY install requisite software? yes +
EXTEND file systems if space needed? yes +
OVERWRITE same or newer versions? no +
VERIFY install and check file sizes? no +
Include corresponding LANGUAGE filesets? yes +
DETAILED output? yes +
Process multiple volumes? yes +
ACCEPT new license agreements? yes +
PREVIEW new LICENSE agreements? no +
// Check the Fileset version consistency.
lppchk -v
lppchk: The following filesets need to be installed or corrected to bring
the system to a consistent state:
devices.common.IBM.sni.ml 1.2.0.0 (not installed; requisite fileset)
// Check the upgraded version on SSH/SSL
# ssh -V
OpenSSH_5.2p1, OpenSSL 0.9.8k 25 Mar 2009
# lslpp -lv | grep -i opens
openssh.base.client 5.2.0.5300 COMMITTED Open Secure Shell Commands
openssh.base.server 5.2.0.5300 COMMITTED Open Secure Shell Server
openssh.license 5.2.0.5300 COMMITTED Open Secure Shell License
openssh.man.en_US 5.2.0.5300 COMMITTED Open Secure Shell
openssl.base 0.9.8.1103 COMMITTED Open Secure Socket Layer
openssl.license 0.9.8.1103 COMMITTED Open Secure Socket License
openssl.man.en_US 0.9.8.1103 COMMITTED Open Secure Socket Layer
openssh.base.client 5.2.0.5300 COMMITTED Open Secure Shell Commands
openssh.base.server 5.2.0.5300 COMMITTED Open Secure Shell Server
openssl.base 0.9.8.1103 COMMITTED Open Secure Socket Layer
No comments:
Post a Comment