There is a new version of OpenSSH (2.9.9p2) which addresses some security issues. I have borrowed from Scott Anguish at Stepwise and created instructions on installed OpenSSH 2.9.9p2 on MacOS X.
I have installed and tested this on my own system and it's working fine.
You need to install 3 things: tcp_wrappers (if you want support for this in OpenSSH), the latest OpenSSL libraries, and OpenSSH itself.
tcp_wrappers:
You can use the 7.6-4 that Scott Anguish has on Stepwise. Here is how you install tcp_wrappers.
curl -O http://www3.stepwise.com/Articles/Workbench/tcp_wrappers-7.6-4.tar.gz
tar -xzf tcp_wrappers-7.6-4.tar.gz
cd tcp_wrappers-4
(Apple has changed some stuff around in 10.1 so you need to add this link)
sudo ln -s /Developer/Makefiles/CoreOS /CoreOS
make RC_ARCHS=ppc install
sudo mkdir -p /usr/local/lib
sudo mkdir -p /usr/local/include
sudo cp /tmp/tcp_wrappers/Release/usr/local/lib/libwrap.a /usr/local/lib/libwrap.a
sudo ranlib /usr/local/lib/libwrap.a
sudo cp tcp_wrappers/tcpd.h /usr/local/include/
OpenSSL
You can get the latest OpenSSL from www.openssl.org.
The current OpenSSL for some reason will not configure for Darwin automatically like before so you need to do it this way from within the OpenSSL directory
./Configure rhapsody-ppc-cc
sudo mkdir -p /usr/local/include
sudo cp -r include/openssl /usr/local/include/openssl
OpenSSH
You can get OpenSSH 2.9.9p2 over at www.openssh.org.
Configure with all of these options:
./configure --with-tcp-wrappers --without-rsh --prefix=/usr --mandir=/usr/share/man --sysconfdir=/private/etc
make
sudo make install
Restart SSH.
To test, type the following and you should see:
[dogbert:~] gary% telnet 127.0.0.1 22
Trying 127.0.0.1...
Connected to 127.0.0.1.
Escape character is '^]'.
SSH-1.99-OpenSSH_2.9.9p2
I have installed and tested this on my own system and it's working fine.
You need to install 3 things: tcp_wrappers (if you want support for this in OpenSSH), the latest OpenSSL libraries, and OpenSSH itself.
tcp_wrappers:
You can use the 7.6-4 that Scott Anguish has on Stepwise. Here is how you install tcp_wrappers.
curl -O http://www3.stepwise.com/Articles/Workbench/tcp_wrappers-7.6-4.tar.gz
tar -xzf tcp_wrappers-7.6-4.tar.gz
cd tcp_wrappers-4
(Apple has changed some stuff around in 10.1 so you need to add this link)
sudo ln -s /Developer/Makefiles/CoreOS /CoreOS
make RC_ARCHS=ppc install
sudo mkdir -p /usr/local/lib
sudo mkdir -p /usr/local/include
sudo cp /tmp/tcp_wrappers/Release/usr/local/lib/libwrap.a /usr/local/lib/libwrap.a
sudo ranlib /usr/local/lib/libwrap.a
sudo cp tcp_wrappers/tcpd.h /usr/local/include/
OpenSSL
You can get the latest OpenSSL from www.openssl.org.
The current OpenSSL for some reason will not configure for Darwin automatically like before so you need to do it this way from within the OpenSSL directory
./Configure rhapsody-ppc-cc
sudo mkdir -p /usr/local/include
sudo cp -r include/openssl /usr/local/include/openssl
OpenSSH
You can get OpenSSH 2.9.9p2 over at www.openssh.org.
Configure with all of these options:
./configure --with-tcp-wrappers --without-rsh --prefix=/usr --mandir=/usr/share/man --sysconfdir=/private/etc
make
sudo make install
Restart SSH.
To test, type the following and you should see:
[dogbert:~] gary% telnet 127.0.0.1 22
Trying 127.0.0.1...
Connected to 127.0.0.1.
Escape character is '^]'.
SSH-1.99-OpenSSH_2.9.9p2