How to update openssh last version?

S

soolan

Member
Joined
Jan 13, 2023
Messages
66
Reaction score
4
Credits
626
Hello

Can I upgrade openssh version to openssh 9.3 using tar.gz file? When I try to install using the rpm package, it warns about the depended packages?

OS: Oracle Linux 7.9
 


You don't need to upgrade to the latest ssh version because you are using a RHEL clone and the version installed on RHEL still gets backported security patches.
access.redhat.com

Why is the Openssh version in Red Hat Enterprise Linux older than upstream? - Red Hat Customer Portal

A security audit identified a vulnerability with the OpenSSH version used Need to install OpenSSH 9.3 or greater in Red Hat Enterprise Linux
access.redhat.com access.redhat.com

Red Hat Customer Portal - Access to 24x7 support and knowledge

access.redhat.com access.redhat.com
 
f33dm3bits said:
You don't need to upgrade to the latest ssh version because you are using a RHEL clone and the version installed on RHEL still gets backported security patches.
access.redhat.com

Why is the Openssh version in Red Hat Enterprise Linux older than upstream? - Red Hat Customer Portal

A security audit identified a vulnerability with the OpenSSH version used Need to install OpenSSH 9.3 or greater in Red Hat Enterprise Linux
access.redhat.com access.redhat.com

Red Hat Customer Portal - Access to 24x7 support and knowledge

access.redhat.com access.redhat.com
Click to expand...
Thank you for the information. I have a lack of knowledge about this. I don't quite understand why I shouldn't upgrade. Is there a resource on this? Or where can I get control?
 
You don't seem to understand what RHEL is? Red Hat does back-port security fixes on all the software from the RHEL repos and all the updates and security patches come from RHEL, the whole idea of using RHEL is that you get 10 years of support for each major version of RHEL not to be using the latest software of everything.
access.redhat.com

Security Backporting Practice - Red Hat Customer Portal

Access Red Hat’s knowledge, guidance, and support through your subscription.
access.redhat.com access.redhat.com
access.redhat.com

What is backporting and how does it affect Red Hat Enterprise Linux? - Red Hat Customer Portal

What is backporting and how does it affect Red Hat Enterprise Linux (RHEL)? The recommended RHEL package version for a CVE does not match the upstream package version. Why are RHEL package versions behind the upstream versions?
access.redhat.com access.redhat.com
Do you even understand how software management works under Linux with a package manager? You don't need to upgrade software from source because when there are needed updates available including security patches they will be available through the sources of the distribution you are running.
 
f33dm3bits said:
You don't seem to understand what RHEL is? Red Hat does back-port security fixes on all the software from the RHEL repos and all the updates and security patches come from RHEL, the whole idea of using RHEL is that you get 10 years of support for each major version of RHEL not to be using the latest software of everything.
access.redhat.com

Security Backporting Practice - Red Hat Customer Portal

Access Red Hat’s knowledge, guidance, and support through your subscription.
access.redhat.com access.redhat.com
access.redhat.com

What is backporting and how does it affect Red Hat Enterprise Linux? - Red Hat Customer Portal

What is backporting and how does it affect Red Hat Enterprise Linux (RHEL)? The recommended RHEL package version for a CVE does not match the upstream package version. Why are RHEL package versions behind the upstream versions?
access.redhat.com access.redhat.com
Do you even understand how software management works under Linux with a package manager? You don't need to upgrade software from source because when there are needed updates available including security patches they will be available through the sources of the distribution you are running.
Click to expand...
If I understand correctly, the servers I manage cannot access the RHEL (Red Hat Enterprise Linux) package servers, so I am using manual methods to get updates and upgrade packages.
 
soolan said:
If I understand correctly, the servers I manage cannot access the RHEL (Red Hat Enterprise Linux) package servers, so I am using manual methods to get updates and upgrade packages.
Click to expand...
Then you should using something like Satellite or The Foreman running which sync the RHEL or Oracle Linux repos and then your clients connect to that to retrieve their updates. Updating every piece of software on RHEL or a RHEL clone by compiling and installing it manually is just plain stupid and inefficient and it goes against what RHEL stands for and is meant to be and Red Hat and Oracle will not support it, you might as well not use RHEL(or clone) then but another distribution.

Foreman

www.theforeman.org www.theforeman.org
www.redhat.com

Red Hat Satellite

System management software that makes Red Hat infrastructure easier to deploy, scale, and manage across any environment.
www.redhat.com www.redhat.com
 
You must log in or register to reply here.

Similar threads

S
openssh upgrade
Replies
1
Views
1K
acast
A
S
How to update qemu?
Replies
3
Views
1K
CaffeineAddict
CaffeineAddict
M
Can't 'sudo apt upgrade grafana'
Replies
6
Views
1K
wizardfromoz
wizardfromoz
wizardfromoz
OpenSSH Vulnerability - May Be of Interest to Sysadmins
Replies
2
Views
857
wizardfromoz
wizardfromoz
S
update rpm package
Replies
7
Views
2K
dos2unix
dos2unix


Members online

Total: 1,098 (members: 1, guests: 1,097)

Latest posts

Top