phpseclib-我可以使用用户名，密钥和密码(而不是密钥密码)进行连接 [英] phpseclib - Can I connect using username, key and password (not a key passphrase)

问题描述

很抱歉，如果我在文档中错过了此链接，但可以使用私钥和密码(而不是我的私钥密码)连接到SFTP服务器.

Apologies if I have missed this in the documentation but is it possible to connect to an SFTP server with a private key and a password (not a passphrase for my private key).

示例显示了用户名/密码，用户名/密钥和用户名/密钥/密钥密码验证类型.

The examples show username/password, username/key and username/key/key passphrase authentication types.

通过命令行连接时，会提示我输入密码...

When connecting via the command line I would get this prompt for my password...

user@x.x.x.x的密码:

user@x.x.x.x's password:

希望这个库可以处理吗?

Hopefully this library can handle this?

否则，还有其他基于PHP的解决方案可能支持用户名/密钥和服务器密码身份验证吗?我在这里非常灵活，可以根据需要安装模块.

Otherwise are there any other PHP based solutions that might support username/key and server password authentication? I'm quite flexible here and can install modules if need be.

编辑

感谢您到目前为止的帮助... 我已经尝试过您提到的诺伊伯特(Neubert)，但这似乎没有用. 为了验证连接到服务器的必要条件，我在命令行上对此进行了测试.
sftp key user@ip-提示您按预期输入密码
sftp user@ip-提示输入密码，但输入正确时会告诉我部分成功通过身份验证".

Thanks for the help so far... I had tried what you mentioned Neubert but this didn't seem to work. And to verify what is necessary to connect to the server I tested this on the command line.
sftp key user@ip - Prompted for password as expected
sftp user@ip - Prompted for password but when entered correctly told I am "authenticated with partial success".

如果可以先使用密钥再使用密码，我认为对目录和密钥的许可应该很好.

I think the permission on directories and keys should be fine if I can get in using key and then password.

我开始认为该库不满足我的需求.

I am starting to think this library doesn't support what I need.

推荐答案

phpseclib 支持多种要素认证.这是一个如何做的例子:

phpseclib supports multi factor authentication. Here's an example of how to do it:

<?php
include('Net/SSH2.php');
include('Crypt/RSA.php')

$rsa = new Crypt_RSA();
$rsa->loadKey(file_get_contents('/path/to/key.pem'));

$ssh = new Net_SSH2('www.domain.tld');
if (!$ssh->login('username', 'pass1', $rsa)) {
    exit('Login failed');
}
// this does the same thing as the above
//if (!$ssh->login($username, 'pass1') && !$ssh->login('username', $rsa)) {
//    exit('Login failed');
//}

echo $ssh->exec('pwd');
echo $ssh->exec('ls -la');
?>

但是要记住一些事情:许多人将受密码保护的私钥混淆为多因素(密码和公钥)，而实际上却并非如此.至少就SSH而言并非如此.

Something to keep in mind, however: a lot of people confuse password protected private keys as being multi factor (password and public key) when in fact it is not. At least not in-so-far as SSH is concerned.

这篇关于phpseclib-我可以使用用户名，密钥和密码(而不是密钥密码)进行连接的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！