The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

When Is Cpanel or REDHAT Gonna Update Ssh?

Discussion in 'General Discussion' started by WebNET, Sep 20, 2003.

  1. WebNET

    WebNET Active Member

    Joined:
    Jul 21, 2003
    Messages:
    38
    Likes Received:
    0
    Trophy Points:
    6
    Location:
    USA Brooklyn NYC
    BECAUSE I AM TIRED updating SSH. Everytime CPANEL updates, It reverts my 3.7 back to 3.5. I don't like this and I'm not going to be updating my SSH everytime CPANEL updates and reverts SSH back to crummy 3.5

    I'd suggest CPANEL put new software in ASAP, or i'll be sending my login details to you to reupdate my SSH!

    Thank you for your time,
    DaviD K.:mad:

    cPanel.net Support Ticket Number:
     
    #1 WebNET, Sep 20, 2003
    Last edited: Sep 20, 2003
  2. JWK1291

    JWK1291 Registered

    Joined:
    Jul 6, 2003
    Messages:
    4
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    Tucson, Arizona
    What do you mean?

    cPanel.net Support Ticket Number: 123456789
     
  3. WebNET

    WebNET Active Member

    Joined:
    Jul 21, 2003
    Messages:
    38
    Likes Received:
    0
    Trophy Points:
    6
    Location:
    USA Brooklyn NYC
    Well, after updating my SSH to 3.7, after a CPANEL upgrade, my SSH becomes 3.5.
    I can imagine my NEW BIND 9.2.3. that I just put in has been reverted also!

    I wish CPANEL would not include these, and let us do this ourselves, or make a scripts that knows how to check to see if something NEWER existed! OR include the NEW SOURCES, and not updates to OLD sources!

    Thank you
    David K,

    cPanel.net Support Ticket Number:
     
    #3 WebNET, Sep 20, 2003
    Last edited: Sep 20, 2003
  4. dgbaker

    dgbaker Well-Known Member
    PartnerNOC

    Joined:
    Sep 20, 2002
    Messages:
    2,578
    Likes Received:
    3
    Trophy Points:
    38
    Location:
    Toronto, Ontario Canada
    cPanel Access Level:
    DataCenter Provider
    AMEN to that.

    cPanel.net Support Ticket Number:
     
  5. Juanra

    Juanra Well-Known Member

    Joined:
    Sep 22, 2001
    Messages:
    777
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Spain
    WHM -> Server Setup -> Change Update Preferences -> Security Package Updates -> Never Update

    cPanel.net Support Ticket Number:
     
  6. cPanelNick

    cPanelNick Administrator
    Staff Member

    Joined:
    Mar 9, 2015
    Messages:
    3,426
    Likes Received:
    2
    Trophy Points:
    38
    cPanel Access Level:
    DataCenter Provider
    Are you building from source or rpm?

    cPanel.net Support Ticket Number:
     
  7. dgbaker

    dgbaker Well-Known Member
    PartnerNOC

    Joined:
    Sep 20, 2002
    Messages:
    2,578
    Likes Received:
    3
    Trophy Points:
    38
    Location:
    Toronto, Ontario Canada
    cPanel Access Level:
    DataCenter Provider
    For us it is from source -

    wget ftp://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-3.7.1p1.tar.gz
    tar -zxvf openssh-3.7.1p1.tar.gz
    cd openssh-3.7.1p1
    /usr/sbin/useradd -d /var/empty -c "sshd privsep" -s /bin/false sshd
    chown root.root /var/empty
    ./configure --prefix=/usr --with-pam --sysconfdir=/etc/ssh
    make
    make install

    cPanel.net Support Ticket Number:
     
  8. dgbaker

    dgbaker Well-Known Member
    PartnerNOC

    Joined:
    Sep 20, 2002
    Messages:
    2,578
    Likes Received:
    3
    Trophy Points:
    38
    Location:
    Toronto, Ontario Canada
    cPanel Access Level:
    DataCenter Provider
    I know that one, but would prefer it to at least check version info.

    cPanel.net Support Ticket Number:
     
  9. WebNET

    WebNET Active Member

    Joined:
    Jul 21, 2003
    Messages:
    38
    Likes Received:
    0
    Trophy Points:
    6
    Location:
    USA Brooklyn NYC
    Hi,

    Yes I am building from source. I just went and remade and installed the new 3.7.




    CPANEL.....USE NEW SOURCES and this problem would not exists!

    Thanks,
    David K.
     
  10. perlchild

    perlchild Well-Known Member

    Joined:
    Sep 1, 2002
    Messages:
    279
    Likes Received:
    0
    Trophy Points:
    16
    It's against redhat update policy to upgrade ssh version number to fix security bugs if no new features are added. You won't see openssh 3.7 before redhat 9.0, perhaps even redhat 9.1

    Notice how in redhat's advisory, they release a patched 3.5, not 3.7

    https://rhn.redhat.com/errata/RHSA-2003-279.html

    It's not cpanel not using new source, it's redhat saying they shouldn't use the new source. For software compatibility.

    cPanel.net Support Ticket Number:
     
  11. dysk

    dysk Well-Known Member

    Joined:
    Apr 22, 2003
    Messages:
    52
    Likes Received:
    0
    Trophy Points:
    6
    Hi-
    Have you tried building an RPM of the new ssh instead of installing straight from source? So far cPanel hasn't mkessed with the later openssh libraries that I installed.

    Regards,
    Erek Dyskant

    cPanel.net Support Ticket Number:
     
  12. perlchild

    perlchild Well-Known Member

    Joined:
    Sep 1, 2002
    Messages:
    279
    Likes Received:
    0
    Trophy Points:
    16
    Good point, people invented RPM to keep track of dependencies and versions. Last I checked, only perl and python keep their own version as "code" for the rest, it's just a comment ;)

    cPanel.net Support Ticket Number:
     
  13. cPanelNick

    cPanelNick Administrator
    Staff Member

    Joined:
    Mar 9, 2015
    Messages:
    3,426
    Likes Received:
    2
    Trophy Points:
    38
    cPanel Access Level:
    DataCenter Provider
    As long as you install a new rpm cPanel will see that its newer and ignore the upgrade. rpm isn't smart enough to know you installed it from souce.

    FreeBSDs port system is a bit smarter though, so installing from source might not be a problem on FreeBSD in some cases.

    cPanel.net Support Ticket Number:
     
  14. ThunderHostingDotCom

    ThunderHostingDotCom Well-Known Member

    Joined:
    Nov 18, 2002
    Messages:
    450
    Likes Received:
    1
    Trophy Points:
    16
    Location:
    All over!
    How do I find out what version of SSH I am running?

    cPanel.net Support Ticket Number:
     
  15. TheSpidre

    TheSpidre Active Member

    Joined:
    Mar 10, 2003
    Messages:
    36
    Likes Received:
    0
    Trophy Points:
    6
    ssh -V

    BTW, OpenSSH_3.7.1p2 is the latest version,p1 is not secure!

    cPanel.net Support Ticket Number:
     
  16. ThunderHostingDotCom

    ThunderHostingDotCom Well-Known Member

    Joined:
    Nov 18, 2002
    Messages:
    450
    Likes Received:
    1
    Trophy Points:
    16
    Location:
    All over!
    Ok, so now how do I upgrade just SSH?

    cPanel.net Support Ticket Number:
     
  17. Pyro411

    Pyro411 Active Member

    Joined:
    Oct 2, 2002
    Messages:
    39
    Likes Received:
    0
    Trophy Points:
    6
    Location:
    Stanton, Michigan.
    easiest way I've played around with... download the source file for the Redhat ssh and install it. then change dir to

    /usr/src/redhat/SOURCES and wget the latest ssh sourcecode to that. then hit up a cd ../SPECS and alter the spec file for ssh accordingly.

    after that run rpmbuild -bb ssh.spec which will create the proper RPMS for your system.

    last step.

    goto
    /usr/src/redhat/RPMS/i386 & install or update the proper RPMs.

    that's just one way of doing it. others may have a better way of doing it.

    cPanel.net Support Ticket Number:
     
  18. ThunderHostingDotCom

    ThunderHostingDotCom Well-Known Member

    Joined:
    Nov 18, 2002
    Messages:
    450
    Likes Received:
    1
    Trophy Points:
    16
    Location:
    All over!
    Holly cow! You would think that cPanel would have the most current version installed with the most current version of cPanel, right? I shouldn't have to do all that, it should be automatic with a cPanel update!

    cPanel.net Support Ticket Number:
     
  19. haze

    haze Well-Known Member

    Joined:
    Dec 21, 2001
    Messages:
    1,550
    Likes Received:
    3
    Trophy Points:
    38
    They do. As it was stated earlier in this thread REDHAT uses a different verion labeling method than those that the software vendor might use. They do not always see a need to change the version number simply because of a few bugs. If you were to visit redhats errata page, you would see that the versions ARE patched. And if you don't like that, then stop auto security updates and start updating by hand.. is that freaking simple people!

    cPanel.net Support Ticket Number:
     
  20. ThunderHostingDotCom

    ThunderHostingDotCom Well-Known Member

    Joined:
    Nov 18, 2002
    Messages:
    450
    Likes Received:
    1
    Trophy Points:
    16
    Location:
    All over!
    Who's got a bug up their but tonight?

    cPanel.net Support Ticket Number:
     
Loading...

Share This Page