When php remotely copies files and executes commands in the remote server, the module used is ssh2. All subsequent operations are completed based on the ssh2 connection handle.
1. Installation of SSH2 module
1.1 Install required expansion packs
[plain]
wget
tar zxf libssh2-1.4.2.tar.gz
cd libssh2-1.4.2
./configure && make && make install
wget
tar zxf libssh2-1.4.2.tar.gz
cd libssh2-1.4.2
./configure && make && make install
[plain]
wget
cd ssh2-0.11.3
phpize (if the error command is not found, apt-get install php5-dev)
./configure —with-ssh2 && make && make install
wget
cd ssh2-0.11.3
phpize (if the error command is not found, apt-get install php5-dev)
./configure —with-ssh2 && make && make install
1.2 Modify php configuration information
[plain]
cd /etc/php5/cgi
vim php.ini
Added item: extension=/usr/lib/php5/20090626/ssh2.so
ssh2.so is the module obtained when compiling ssh2, and the above is the location of the module.
cd /etc/php5/cgi
vim php.ini
Added item: extension=/usr/lib/php5/20090626/ssh2.so
ssh2.so is the module obtained when compiling ssh2, and the above is the location of the module.
[plain]
cd /etc/php5/cli
vim php.ini
Added item: extension=/usr/lib/php5/20090626/ssh2.so
ssh2.so is the module obtained when compiling ssh2, and the above is the location of the module.
cd /etc/php5/cli
vim php.ini
Added item: extension=/usr/lib/php5/20090626/ssh2.so
ssh2.so is the module obtained when compiling ssh2, and the above is the location of the module.
1.3 Restart the web server
[plain]
/etc/init.d/lighttpd restart
/etc/init.d/lighttpd restart
1.4 Check whether ssh2 is loaded
[plain]
[root@localhost ~]php -m | grep ssh2
ssh2
[root@localhost ~]php -m | grep ssh2
ssh22. Connection application of SSH2 module
There are two ways to connect to SSH2, namely username and password, and ssh key form.
2.1 Username and Password
[php]
$connection = ssh2_connect("192.168.6.222",22);
if (ssh2_auth_password($connection,"veno","ubuntu"))
{
echo "Authentication Successful! ";
}else{
die("Authentication Failed...");
}
$connection = ssh2_connect("192.168.6.222",22);
if (ssh2_auth_password($connection,"veno","ubuntu"))
{
echo "Authentication Successful! ";
}else{
die("Authentication Failed...");
}
2.2 ssh key
[php]
$connection = ssh2_connect('192.168.6.222', 22, array('hostkey'=>'ssh-rsa'));
if (ssh2_auth_pubkey_file($connection, 'root',
‘/root/.ssh/id_rsa.pub’,
‘/root/.ssh/id_rsa'))
{
echo "Public Key Authentication Successfuln";
} else {
echo ('Public Key Authentication Failed');
}
$connection = ssh2_connect('192.168.6.222', 22, array('hostkey'=>'ssh-rsa'));
if (ssh2_auth_pubkey_file($connection, 'root',
‘/root/.ssh/id_rsa.pub’,
'/root/.ssh/id_rsa'))
{
echo "Public Key Authentication Successfuln";
} else {
echo ('Public Key Authentication Failed');
}
Ps: Key generation:
Log in as root on the server 192.168.6.229
[plain]
#ssh-keygen
#ssh-keygen
If you have any questions, just press Enter
The resulting public key is in ~/.ssh/id_rsa.pub
If you want to log in to 222 through key verification on 229, cp the public key id_rsa.pub of 229 to 222, first log in to root manually, and then run:
[plain]
cat id_rsa.pub >> ~/.ssh/authorized_keys
cat id_rsa.pub >> ~/.ssh/authorized_keys
In this way, you can ssh 192.168.6.229 on 229 and log in to 222 without entering a password. The above php code can also pass verification on 229.
3. Specific applications of SSH2 module
After passing SSH2 verification, the obtained connection character is $connection
3.1 Implement remote copy files
Copy remote server files to local:
bool ssh2_scp_recv ( resource $session, string $remote_file, string $local_file )
Ps: When receiving a file, the following file name can be empty, such as:
[php]
ssh2_scp_recv($connection, '/home/xiaozl/veno1.exe', '/home/xiaozl/')
ssh2_scp_recv($connection, '/home/xiaozl/veno1.exe', '/home/xiaozl/')
Copy local files to remote server
bool ssh2_scp_send ( resource $session, string $local_file, string $remote_file [, int $create_mode] )
Ps: When sending a file, the following file name cannot be empty, such as:
[php]
ssh2_scp_send($connection, '/home/xiaozl/package.xml', '/home/xiaozl/package.xml');
ssh2_scp_send($connection, '/home/xiaozl/package.xml', '/home/xiaozl/package.xml');
3.2 Execute commands on the remote server and get the return value
resource ssh2_exec( resource $session, string $command [, string $pty [, array $env [, int $width [, int $height [, int $width_height_type]]]]] )
Execute the command on 222 on 229:
[php]
$tcmd="cd /home/veno/gateway/radiusclient;";
$tcmd.="./nastool.sh get-status app=2b1c5364-db39-c76d-842c-11d4a81d555d";
$stream = ssh2_exec($connection, $tcmd);
stream_set_blocking($stream,true);
echo stream_get_contents($stream);
$tcmd="cd /home/veno/gateway/radiusclient;";
$tcmd.="./nastool.sh get-status app=2b1c5364-db39-c76d-842c-11d4a81d555d";
$stream = ssh2_exec($connection, $tcmd);
stream_set_blocking($stream,true);
echo stream_get_contents($stream);
Attachment: PHP code used in the test
[php]
echo "I visited here";
$connection = ssh2_connect('192.168.6.222', 22, array('hostkey'=>'ssh-rsa'));
if (ssh2_auth_pubkey_file($connection, 'root',
‘/root/.ssh/id_rsa.pub’,
‘/root/.ssh/id_rsa'))
{
echo "Public Key Authentication Successfuln";
//$flag=ssh2_scp_recv($connection, '/home/xiaozl/veno1.exe', '/home/xiaozl/');
//When receiving, the subsequent file name can be empty
//$flag=ssh2_scp_send($connection, '/home/xiaozl/package.xml', '/home/xiaozl/package.xml');
//When sending, the following file name cannot be empty
//echo $flag;
$tcmd="cd /home/veno/gateway/radiusclient;";
$tcmd.="./nastool.sh get-status app=2b1c5364-db39-c76d-842c-11d4a81d555d";
$stream = ssh2_exec($connection, $tcmd);
stream_set_blocking($stream,true);
echo stream_get_contents($stream);
} else {
echo ('Public Key Authentication Failed');
}
echo "
";
$connection = ssh2_connect('192.168.6.222', 22);
ssh2_auth_password($connection, 'veno', '*******');
$tcmd="cd /home/veno/gateway/radiusclient;";
$tcmd.="./nastool.sh get-status app=2b1c5364-db39-c76d-842c-11d4a81d555d";
$stream = ssh2_exec($connection, $tcmd);
echo "
";
echo "-------------------------------------------------" ;
stream_set_blocking($stream,true);
echo stream_get_contents($stream);
echo "-------------------------------------------------" ;
echo "
";
echo "I came here for a visit";
$connection = ssh2_connect('192.168.6.222', 22, array('hostkey'=>'ssh-rsa'));
if (ssh2_auth_pubkey_file($connection, 'root',
‘/root/.ssh/id_rsa.pub’,
'/root/.ssh/id_rsa'))
{
echo "Public Key Authentication Successfuln";
//$flag=ssh2_scp_recv($connection, '/home/xiaozl/veno1.exe', '/home/xiaozl/');
//When receiving, the subsequent file name can be empty
//$flag=ssh2_scp_send($connection, '/home/xiaozl/package.xml', '/home/xiaozl/package.xml');
//When sending, the following file name cannot be empty
//echo $flag;
$tcmd="cd /home/veno/gateway/radiusclient;";
$tcmd.="./nastool.sh get-status app=2b1c5364-db39-c76d-842c-11d4a81d555d";
$stream = ssh2_exec($connection, $tcmd);
stream_set_blocking($stream,true);
echo stream_get_contents($stream);
} else {
echo ('Public Key Authentication Failed');
}
echo "
";
$connection = ssh2_connect('192.168.6.222', 22);
ssh2_auth_password($connection, 'veno', '*******');
$tcmd="cd /home/veno/gateway/radiusclient;";
$tcmd.="./nastool.sh get-status app=2b1c5364-db39-c76d-842c-11d4a81d555d";
$stream = ssh2_exec($connection, $tcmd);
echo "
";
echo "-------------------------------------------------" ;
stream_set_blocking($stream,true);
echo stream_get_contents($stream);
echo "-------------------------------------------------" ;
echo "
";