Print-friendly Version

Installing OpenSSH on the Solaris 8 OS

By Joel Andrews

Overview

This document is a compilation of several documents. I have condensed them into one comprehensive resource. I have successfully used this document in an actual install of SSH.

Install the following packages and Sun Patch.

Note: You can download all needed packages from SunFreeware: http://www.sunfreeware.com/openssh8.html.

Packages

Patch

112438-02.jar.zip

Note: Download the patch from the Patch Portal within the SunSolve Site.

Once the packages are placed on the system, run the following script to add the packages and install SSH and SSL.

Script: /opt/ssh/install_ssd.ksh (Suggested Name)

Install Script

You can find the script at:
http://www.sun.com/bigadmin/scripts/submittedScripts/install_sshd.ksh.txt.

Note: Place the install script in the same directory as the packages [/opt/ssh].

Starting Pseudo Random Generator Daemon

Once the install script has completed, seed and start the PRNGD Reference Doc (README):
http://www.aet.tu-cottbus.de/personen/jaenicke/postfix_tls/prngd.html.

Steps:

1. Set the LD_LIBRARY_PATH containing /usr/local/lib and /usr/local/ssl/lib within the /etc/profile.
2. If you already have a real EGD, use the following command:
   # perl egc.pl /path/to/EGD-SOCKET read 255 > /etc/prngd-seed
   Or cat some log files together:
   cat /var/adm/sulog /var/adm/vold.log > /etc/prngd-seed
3. Start prngd:
   # /usr/local/sbin/prngd /var/run/egd-pool

Note: If you have trouble starting prngd, it may be necessary to create the following link. Only do so as a last resort. In most cases, the preceding command will create the [egd-pool] file.

# ln -s /var/spool/prngd/pool /var/run/egd-pool

Generating Keys

Once PRNGD has been seeded, generate the rsa, dsa, and rsa1 keys.

Generation commands (from the directory the install script was run in):

# ssh-keygen -t rsa1 -f /usr/local/etc/ssh_host_key -N ""
# ssh-keygen -t dsa -f /usr/local/etc/ssh_host_dsa_key -N ""
# ssh-keygen -t rsa -f /usr/local/etc/ssh_host_rsa_key -N ""

Create startup scripts for sshd and prngd. Place scripts in /etc/init.d.

Example Script (sshd)

Script is located at the following URL: http://www.sunfreeware.com/openssh8.html.

Example Script (prngd)

Refer to: http://www.aet.tu-cottbus.de/personen/jaenicke/postfix_tls/prngd.html.

Make scripts executable and create startup scripts on Run Level 2.

# chgrp sys /etc/init.d/sshd
# chmod 555 /etc/init.d/sshd
# ln ñs /etc/init.d/sshd /etc/rc2.d/S98sshd

Note: Follow the same procedures as for prngd.

Starting or Stopping sshd and prngd

# /etc/rc2.d/S98prngd [start/stop]
# /etc/rc2.d/S98sshd [start/stop]

Reference Documentation

• Building and Deploying OpenSSH for the Solaris Operating Environment (PDF)
• Installing OpenSSH Packages for SPARC and x86/Solaris 8
• PRNGD - Pseudo Random Number Generator Daemon
• Script to install sshd and necessary packages

The information and links on this page have been provided by a BigAdmin user. The submitter is solely responsible for such information and links. Sun is not responsible for the availability of external sites or resources, and does not endorse and is not responsible or liable for any content, advertising, products, or other materials on or available from such sites or resources. Sun will not be responsible or liable, directly or indirectly, for any actual or alleged damage or loss caused by or in connection with use of or reliance on the information posted here, or goods or services available on or through any external site or resource.