New version of OpenSSH


There is a new version of OpenSSH (2.9.9p2) which addresses some security issues. I have borrowed from Scott Anguish at Stepwise and created instructions on installed OpenSSH 2.9.9p2 on MacOS X.

I have installed and tested this on my own system and it's working fine.

You need to install 3 things: tcp_wrappers (if you want support for this in OpenSSH), the latest OpenSSL libraries, and OpenSSH itself.

You can use the 7.6-4 that Scott Anguish has on Stepwise. Here is how you install tcp_wrappers.

curl -O

tar -xzf tcp_wrappers-7.6-4.tar.gz
cd tcp_wrappers-4

(Apple has changed some stuff around in 10.1 so you need to add this link)
sudo ln -s /Developer/Makefiles/CoreOS /CoreOS
make RC_ARCHS=ppc install
sudo mkdir -p /usr/local/lib
sudo mkdir -p /usr/local/include
sudo cp /tmp/tcp_wrappers/Release/usr/local/lib/libwrap.a /usr/local/lib/libwrap.a
sudo ranlib /usr/local/lib/libwrap.a
sudo cp tcp_wrappers/tcpd.h /usr/local/include/

You can get the latest OpenSSL from
The current OpenSSL for some reason will not configure for Darwin automatically like before so you need to do it this way from within the OpenSSL directory

./Configure rhapsody-ppc-cc
sudo mkdir -p /usr/local/include
sudo cp -r include/openssl /usr/local/include/openssl

You can get OpenSSH 2.9.9p2 over at

Configure with all of these options:
./configure --with-tcp-wrappers --without-rsh --prefix=/usr --mandir=/usr/share/man --sysconfdir=/private/etc

sudo make install

Restart SSH.

To test, type the following and you should see:

[dogbert:~] gary% telnet 22
Connected to
Escape character is '^]'.