How to Upgrade SSH Deamon

Hi Everyone!

My name’s Samuele and I’m an Italian IT Student so, first of all, I apologize for my bad English.

I have a question for you: I want to upgrade my OpenSSH Server deamon as I want to forward the port to the web (personal purpose: just control my network remotely), but I don’t know how can I do it. I’m quite a newbie with Linux so I thought I’d better to ask you :slight_smile:

Could you help me? I’ve tried to execute

#apt-get upgrade openssh-server

but he wants to upgrade a lot of other packages too.

I’ve also added

deb http://archive.debian.org/debian/ lenny main

in /etc/apt/sources.list (it also gives some KEYEXPIRES errors on apt-get update)?

Could you help me please?

Thank you in advance and Merry Christmas!!!

Samuele

Samuele96,

Please be aware that such proceedings may void your warranty.

Yeah, actually, my warranty expires tomorrow :smiley:

Can someone help me? :slight_smile:

By the way: Merry Christmas!!!

Hi Samuele,

I can’t help a lot, but make sure that your sources file (/etc/apt/sources.list) looks something like this:

deb http://ftp.us.debian.org/debian/ squeeze main

deb-src http://ftp.us.debian.org/debian/ squeeze main

#deb http://ftp.us.debian.org/debian/ wheezy main

#deb-src http://ftp.us.debian.org/debian/ wheezy main

#deb http://ftp.us.debian.org/debian/ sid main

Wheezy is known to brick the MBL when using apt-get. 

Hope this helps.

Edit: By the way, if I understand correctly what you want to do, I think you can do it without updating the ssh server.

Cheers

Hi, thanks for replying me!

Actually, my /ect/apt/sources.list is a bit different from yours.

deb http://archive.debian.org/debian-archive/debian/ lenny main contrib non-free
deb-src http://archive.debian.org/debian-archive/debian/ lenny main contrib non-free
deb http://archive.debian.org/debian-archive/debian-security/ lenny/updates main
deb-src http://archive.debian.org/debian-archive/debian-security/ lenny/updates main
#deb http://ftp.us.debian.org/debian/ squeeze main
#deb http://ftp.us.debian.org/debian/ sid main
#deb http://ftp.us.debian.org/debian/ experimental main
deb http://archive.debian.org/debian/ lenny main

I manually added the last line, but I haven’t touched the other ones (again, I apologize for my English). Do you think I have to change it?

By the way, if I understand correctly what you want to do, I think you can do it without updating the ssh server.

Actually, I could but it seems that my version os SSH Server is a bit old (ssh -v gives OpenSSH_5.1p1 Debian-5, OpenSSL 0.9.8m 25 Feb 2010) and I would prevent intrusions due to software vulnerabilities.

This is the output of dpkg -p openssh-server

MyBookLive:~# dpkg -p openssh-server
Package: openssh-server
Priority: optional
Section: net
Installed-Size: 864
Maintainer: Debian OpenSSH Maintainers debian-ssh@lists.debian.org
Architecture: powerpc
Source: openssh
Version: 1:5.1p1-5
Replaces: openssh-client (<< 1:3.8.1p1-11), ssh, ssh-krb5
Provides: ssh-server
Depends: libc6 (>= 2.7-1), libcomerr2 (>= 1.01), libkrb53 (>= 1.6.dfsg.2), libpam0g (>= 0.99.7.1), libselinux1 (>= 2.0.59), libssl0.9.8 (>= 0.9.8g-9), libwrap0 (>= 7.6-4~), zlib1g (>= 1:1.1.4), debconf (>= 1.2.0) | debconf-2.0, libpam-runtime (>= 0.76-14), libpam-modules (>= 0.72-9), adduser (>= 3.9), dpkg (>= 1.9.0), openssh-client (= 1:5.1p1-5), lsb-base (>= 3.2-13), openssh-blacklist, procps
Recommends: xauth, openssh-blacklist-extra
Suggests: ssh-askpass, rssh, molly-guard
Conflicts: rsh-client (<< 0.16.1-1), sftp, ssh (<< 1:3.8.1p1-9), ssh-krb5 (<< 1:4.3p2-7), ssh-nonfree (<< 2), ssh-socks, ssh2
Size: 312034
Description: secure shell server, an rshd replacement
 This is the portable version of OpenSSH, a free implementation of
 the Secure Shell protocol as specified by the IETF secsh working
 group.
 .
 Ssh (Secure Shell) is a program for logging into a remote machine
 and for executing commands on a remote machine.
 It provides secure encrypted communications between two untrusted
 hosts over an insecure network. X11 connections and arbitrary TCP/IP
 ports can also be forwarded over the secure channel.
 It is intended as a replacement for rlogin, rsh and rcp, and can be
 used to provide applications with a secure communication channel.
 .
 This package provides the sshd server.
 .
 In some countries it may be illegal to use any encryption at all
 without a special permit.

So it’s a bit old…

Thank you again for your help!

Waiting for someone who can drive me to the solution… :slight_smile:

Samuele