概述一、paramiko简单介绍场景预设:很多运维人员平时进行维护linux/unix主机时候,无非通过ssh到相应主机 *** 作,那么一旦主机有成千上百台,那该如何应对,这时候我们需要批处理工具,基于python的工具有ansible、salt,而ansible的核心则是基于paramiko。安装:pip install paramiko或 easy_install paramikoparamiko依赖第三方的Crypto,Ecdsa和pyhton-devel核心组件:SSHclient类方法:connect():远程ssh连接并作校验参数:hostname 连接的目标主机port=SSH_PORT 指定端口username=None 验证的用户名password=None 验证的用户密码pkey=None 私钥方式用于身份验证key_filename=None 一个文件名或文件名列表,指定私钥文件timeout=None 可选的tcp连接超时时间allow_agent=True 是否允许连接到ssh代理,默认为True 允许look_for_keys=True 是否在~/.ssh中搜索私钥文件,默认为True 允许compress=False 是否打开压缩sock=Nonegss_auth=Falsegss_kex=Falsegss_deleg_creds=Truegss_host=Nonebanner_timeout=None exec_command():用于远程执行命令,该命令的输入与输出流为标准输入、标出输出、标准错误输出参数:command 执行的命令bufsize=-1 文件缓冲区大小timeout=None 设置超时时间get_pty=False load_system_host_key():装载系统公钥,默认为~/.ssh/known_hosts参数:filename=None 指定本地公钥文件 set_missing_host_key_policy():设置连接的远程主机没有本地主机密钥或HostKeys对象时的策略,目前支持三种,也就是参数只有三个。参数:AutoAddPolicy 自动添加主机名及主机密钥到本地的known_hosts,不依赖load_system_host_key的配置。即新建立ssh连接时不需要再输入yes或no进行确认WarningPolicy 用于记录一个未知的主机密钥的python警告。并接受,功能上和AutoAddPolicy类似,但是会提示是新连接RejectPolicy 自动拒绝未知的主机名和密钥,依赖load_system_host_key的配置。此为默认选项用法:set_missing_host_key_policy(paramiko.AutoAddPolicy())SFTPClient类SFTPCLient作为一个sftp的客户端对象,根据ssh传输协议的sftp会话,实现远程文件 *** 作,如上传、下载。方法:from_transport(cls,t) 创建一个已连通的SFTP客户端通道put(localpath, remotepath, callback=None, confirm=True) 将本地文件上传到服务器 参数confirm:是否调用stat()方法检查文件状态,返回ls -l的结果get(remotepath, localpath, callback=None) 从服务器下载文件到本地mkdir() 在服务器上创建目录remove() 在服务器上删除目录rename() 在服务器上重命名目录stat() 查看服务器文件状态listdir() 列出服务器目录下的文件二、使用paramiko远程执行命令1.使用用户名、密码直接远程登陆demo:#!/usr/bin/env python3#_*_ coding:utf-8 _*_#Author:wdimport paramikohost='10.0.0.241'username='root'passwd='1234qwer'ssh=paramiko.SSHClient()#创建SSH对象ssh.set_missing_host_key_policy(paramiko.AutoAddPolicy())#设置自动添加known_hostssh.connect(hostname=host,username=username,password=passwd,)#连接主机paramiko.util.log_to_file('tran.log')#设置登陆数据传输日志stdin,stdout,stderr=ssh.exec_command('ifconfig',timeout=10)#执行命令设置超时时间stdout,stderr=stdout.read(),stderr.read()res=stdout if stdout else stderrprint(res.decode())ssh.close()#关闭连接2.使用公钥私钥远程连接demo:#!/usr/bin/env python3#_*_ coding:utf-8 _*_#Author:wdhost='172.16.11.35'username='root'import paramikossh=paramiko.SSHClient()ssh.set_missing_host_key_policy(paramiko.AutoAddPolicy())#设置自动添加known_hosts,一定要在connection之前ssh.connect(username=username,hostname=host,pkey=paramiko.RSAKey.from_private_key_file('/Users/fangchaoliu/.ssh/id_rsa'))stdin,stdout,stderr=ssh.exec_command('ifconfig')stdout,stderr=stdout.read(),stderr.read()res=stdout if stdout else stderrprint(res.decode())3.使用SSHclient封装transport#!/usr/bin/env python3#_*_ coding:utf-8 _*_#Author:wdhost=('172.16.11.35',22)user='root'passwd='1234qwer'import paramikotran=paramiko.Transport(host)#host是一个tuple,分别是主机和porttran.connect(username=user,password=passwd)ssh=paramiko.SSHClient()ssh._transport=transtdin,stdout,stderr=ssh.exec_command('df -h')stdout,stderr=stdout.read(),stderr.read()res=stdout if stdout else stderrprint(res.decode())tran.close()私钥是字符串:import paramikofrom io import StringIOkey_str = """-----BEGIN RSA PRIVATE KEY-----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-----END RSA PRIVATE KEY-----"""private_key = paramiko.RSAKey(file_obj=StringIO(key_str))transport = paramiko.Transport(('10.0.1.40', 22))transport.connect(username='wupeiqi', pkey=private_key)ssh = paramiko.SSHClient()ssh._transport = transportstdin, stdout, stderr = ss
<table border="0">
<tr>
<td><span >一、paramiko简单介绍</td>
</tr></table>
很多运维人员平时进行维护linux/unix主机时候,无非通过ssh到相应主机 *** 作,那么一旦主机有成千上百台,那该如何应对,这时候我们需要批处理工具,基于python的工具有href="http://docs.ansible.com/" target="_blank">ansible、salt,而ansible的核心则是基于paramiko。
pip install paramiko或 easy_install paramiko
paramiko依赖第三方的Crypto,Ecdsa和pyhton-devel
connect():远程ssh连接并作校验
参数:
@H_301_39@hostname 连接的目标主机@H_301_39@port=SSH_PORT 指定端口@H_301_39@username=None 验证的用户名@H_301_39@password=None 验证的用户密码@H_301_39@pkey=None 私钥方式用于身份验证@H_301_39@key_filename=None 一个文件名或文件名列表,指定私钥文件@H_301_39@timeout=None 可选的tcp连接超时时间@H_301_39@allow_agent=True 是否允许连接到ssh代理,默认为True 允许@H_301_39@look_for_keys=True 是否在~/.ssh中搜索私钥文件,默认为True 允许@H_301_39@compress=False 是否打开压缩@H_301_39@sock=None@H_301_39@gss_auth=False@H_301_39@gss_kex=False@H_301_39@gss_deleg_creds=True@H_301_39@gss_host=None@H_301_39@banner_timeout=Noneexec_command():用于远程执行命令,该命令的输入与输出流为标准输入、标出输出、标准错误输出
参数:
@H_301_39@command 执行的命令@H_301_39@bufsize=-1 文件缓冲区大小@H_301_39@timeout=None 设置超时时间@H_301_39@get_pty=Falseload_system_host_key():装载系统公钥,默认为~/.ssh/kNown_hosts
参数:
@H_301_39@filename=None 指定本地公钥文件set_missing_host_key_policy():设置连接的远程主机没有本地主机密钥或HostKeys对象时的策略,目前支持三种,也就是参数只有三个。
参数:
@H_301_39@autoAddPolicy 自动添加主机名及主机密钥到本地的kNown_hosts,不依赖load_system_host_key的配置。即新建立ssh连接时不需要再输入yes或no进行确认@H_301_39@WarningPolicy 用于记录一个未知的主机密钥的python警告。并接受,功能上和autoAddPolicy类似,但是会提示是新连接@H_301_39@RejectPolicy 自动拒绝未知的主机名和密钥,依赖load_system_host_key的配置。此为默认选项 用法: set_missing_host_key_policy(paramiko.autoAddPolicy())
SFTPCLIEnt作为一个sftp的客户端对象,根据ssh传输协议的sftp会话,实现远程文件 *** 作,如上传、下载。
方法:
@H_301_39@from_transport(cls,t) 创建一个已连通的SFTP客户端通道@H_301_39@put(localpath,remotepath,callback=None,confirm=True) 将本地文件上传到服务器 参数confirm:是否调用stat()方法检查文件状态,返回ls -l的结果@H_301_39@get(remotepath,localpath,callback=None) 从服务器下载文件到本地@H_301_39@mkdir() 在服务器上创建目录@H_301_39@remove() 在服务器上删除目录@H_301_39@rename() 在服务器上重命名目录@H_301_39@stat() 查看服务器文件状态@H_301_39@@R_502_6818@dir() 列出服务器目录下的文件</tr></table>1.使用用户名、密码直接远程登陆demo:
====paramiko.SSHClIEnt()ssh.set_missing_host_key_policy(paramiko.autoAddPolicy())ssh.connect(hostname=host,username=username,password=passwd,)paramiko.util.log_to_file()stdin,stdout,stderr=ssh.exec_command(,timeout=10)stdout,stderr==stdout stdout (res.decode())ssh.close()2.使用公钥私钥远程连接
demo:
host==<span >import
<span > paramiko
ssh=<span >paramiko.SSHClIEnt()
ssh.set_missing_host_key_policy(paramiko.autoAddPolicy())<span >#<span >设置自动添加kNown_hosts,一定要在connection之前
ssh.connect(username=username,hostname=host,pkey=paramiko.RSAKey.from_privatekeyfile(<span >'<span >/Users/fangchaoliu/.ssh/ID_rsa<span >'<span >))
stdin,stderr=ssh.exec_command(<span >'<span >ifconfig<span >'<span >)
stdout,stderr=<span >stdout.read(),stderr.read()
res=stdout <span >if stdout <span >else<span > stderr
<span >print(res.decode())3.使用SSHclIEnt封装transport
host=(,22===paramiko.Transport(host)tran.connect(username=user,password====ssh.exec_command(=stdout stdout (res.decode())tran.close()私钥是字符串:
io key_str = <span >"""<span >-----BEGIN RSA PRIVATE KEY-----
MIIEpQIBAAKCAQEAq7gLsqYaraFco02/55IgNg0r7NXOtEM3qXpb/dabJ5Uyky/8
NEHhFiQ7deHIRIuTW5Zb0kD6h6EBbVlUMBmwJrC2oSzySLU1w+ZNfH0PE6W6fans
H80whhuc/YgP+fjiO+VR/gFcqib8Rll5UfYzf5H8uuOnDeIXGCVgyHQSmt8if1+e
7hn1MVO1Lrm9Fco8ABI7dyv8/ZEwoSfh2C9rGYgA58LT1FkBRkOePbHD43xNfAYC
tfLvz6LErMnwdOW4sNMEWWAWv1fsTB35PAm5CazfKzmam9n5IQXhmUNcNvmaZtvP
c4f4g59mdsaWNtNaY96UjOfx83Om86gmdkKcnwIDAQABAoIBAQCnDBGFJuv8aA7A
ZkBLe+GN815JtOyye7liS1n2I7En3oImoUWNaJEYwwJ8+LmjxMwDCtAkR0XwbvY+
c+nsKPEtkjb3sAu6I148RmwWsGncSRqUaJrljOypaW9dS+GO4Ujjz3/lw1lrxSUh
IqVc0E7kyRW8kP3QCaNBwArYteHreZFFp6XmtKMtXaEA3saJYILxaaXlYkoRi4k8
S2/K8aw3ZMR4tDCOfB4o47JaeiA/e185RK3A+mLn9xTDhTdZqTQpv17/YRPcgmwz
zu30fhVXQT/SuI0sO+bzCO4YGoEwoBX718AWhdLJFoFq1B7k2ZEzXTAtjEXQEWm6
01ndU/jhAasdfasdasdfasdfa3eraszxqwefasdfadasdffsFIfAsjQb4HdkmHuC
OeJrJOd+CYvdEeqJJNnF6AbHyYHIECkj0Qq1kEfLOEsqzd5nDbtkKBte6M1trbjl
HtJ2Yb8w6o/q/6Sbj7wf/cW3liYEdeVCJscozVcQ9R83ea05J+QOAr4nAoGBAMaq
UzLJfLNWZ5Qosmir2oHStFlZpxspax/ln7DlWLW4wPB4YJalSVovF2Buo8hr8X65
lnPIE41M+G0Z7icEXiFyDBFDCtzx0x/RmaBokLathrftI81UCx4gQPLaSVNMlvQA
539GsubSrO4LpHRNGg/weZ6EqQOXvHvkUkm2bDDJAoGATytFNxen6GtC0ZT3SRQM
WYfasdf3xbtuykmnluiofasd2sfmjnljkt7khghmghdasSDFGQfgaFoKfaawoYeH
C2XasVUsVviBn8kPSLSVBPX4JUfQmA6h8HsajeVahxN1U9e0nYJ0sYDQFumts2t8
RT57+WK/0ONwTWHdu+KnaJECgYEAID/ta8LQC3p82iNAZkpWlGDSD2yb/8rH8NQg
9tjEryFwrbMtfX9qn+8srx06B796U3OjifstjJQNmVI0qNlsJpQK8fPwVxRxbJs/
pMbNICrf3sUa4sZgDOFfkeuSlgACh4cVIozDXlR59Z8Y3CoiW0uObEgvMDIfenAj
98pl3ZkCgYEAj/UCSni0DWX4pnKNPm6LUgiS7QvIgM3H9piyt8aipQuzBi5LUKWw
DlQC4Zb73nHgdREtQYYXTu7p27Bl0Gizz1sW2eSgxFU8eTh+ucfVwOXKAXKU5SeI
+MbuBfUYQ4if2N/BXn47+/ecf3A4KgB37Le5SbLDdDWCNxGlBzbpBa0=
-----END RSA PRIVATE KEY-----<span >"""<span >private_key
= paramiko.RSAKey(file_obj=<span >StringIO(key_str))
transport = paramiko.Transport((<span >'<span >10.0.1.40<span >',22<span >))
transport.connect(username=<span >'<span >wupeiqi<span >',pkey=<span >private_key)ssh
=<span > paramiko.SSHClIEnt()
ssh._transport =<span > transportstdin,stderr
= ssh.exec_command(<span >'<span >df<span >'<span >)
result =<span > stdout.read()transport.close()
<span >print(result)<table border="0">
<tr>
<td><span >三、使用paramiko上传、下载文件</td>
</tr></table> 下载上传,使用SSHclIEnt封装的Transport,注意(连接建立完成以后需要关闭通道tran.close())
通过用户名密码demo:
host=(,password===sftp.put(,)sftp.get(,)(status)tran.close()通过公钥私钥方式demo:
=(,22==paramiko.RSAKey.from_private_key_file(=paramiko.Transport(host)tran.connect(username=user,pkey===sftp.put(,)(status)tran.close()简单跳板机实现:
<span >from paramiko.py3compat <span >import<span > u<span >#<span > windows does not have termios...
<span >try<span >:
<span >import<span > termios
<span >import<span > tty
has_termios =<span > True
<span >except<span > importError:
has_termios =<span > False<span >def<span > interactive_shell(chan):
<span >if<span > has_termios:
posix_shell(chan)
<span >else<span >:
windows_shell(chan)<span >def<span > posix_shell(chan):
<span >import<span > select<a href="https://m.jb51.cc/tag/ol/" target="_blank" >ol</a>dtty </span>=<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> termios.tcgetattr(sys.stdin)</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">try</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;">: tty.setraw(sys.stdin.<a href="https://m.jb51.cc/tag/file/" target="_blank" >file</a>no()) tty.setcbreak(sys.stdin.<a href="https://m.jb51.cc/tag/file/" target="_blank" >file</a>no()) chan.settimeout(</span>0.0<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;">) log </span>= open(<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">handle.log</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span>,<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">a+</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span>,en<a href="https://m.jb51.cc/tag/Coding/" target="_blank" >Coding</a>=<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">utf-8</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;">) flag </span>=<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> False temp_@R_<a href="https://www.jb51.cc/tag/502/" target="_blank" >502</a>_6818@ </span>=<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> [] </span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">while</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> True: r,w,e </span>=<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> select.select([chan,sys.stdin],[],[]) </span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">if</span> chan <span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">in</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> r: </span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">try</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;">: x </span>= u(chan.recv(1024<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;">)) </span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">if</span> len(x) ==<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> 0: sys.stdout.write(</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">\r\n*** EOF\r\n</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;">) </span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">break</span> <span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">if</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> flag: </span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">if</span> x.startswith(<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">\r\n</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;">): </span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">pass</span> <span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">else</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;">: temp_@R_<a href="https://www.jb51.cc/tag/502/" target="_blank" >502</a>[email protected](x) flag </span>=<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> False sys.stdout.write(x) sys.stdout.flush() </span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">except</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> socket.timeout: </span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">pass</span> <span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">if</span> sys.stdin <span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">in</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> r: x </span>= sys.stdin.read(1<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;">) </span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;"><a href="https://m.jb51.cc/tag/import/" target="_blank" >import</a></span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> <a href="https://m.jb51.cc/tag/Js/" target="_blank" >Js</a>on </span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">if</span> len(x) ==<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> 0: </span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">break</span> <span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">if</span> x == <span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">\t</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;">: flag </span>=<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> True </span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">else</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;">: temp_@R_<a href="https://www.jb51.cc/tag/502/" target="_blank" >502</a>[email protected](x) </span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">if</span> x == <span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">\r</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;">: log.write(</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">''</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;">.join(temp_@R_<a href="https://www.jb51.cc/tag/502/" target="_blank" >502</a>_6818@)) log.flush() temp_@R_<a href="https://www.jb51.cc/tag/502/" target="_blank" >502</a>[email protected]() chan.send(x)</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">finally</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;">: termios.tcsetattr(sys.stdin,termios.TCSADRAIN,<a href="https://m.jb51.cc/tag/ol/" target="_blank" >ol</a>dtty)
<span >def<span > windows_shell(chan):
<span >import<span > threadingsys.stdout.write(</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">"</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;"><a href="https://m.jb51.cc/tag/li/" target="_blank" >li</a>ne-buffered terminal em<a href="https://m.jb51.cc/tag/ul/" target="_blank" >ul</a>ation. Press F6 or ^Z to send EOF.\r\n\r\n</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">"</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;">)</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">def</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> wri<a href="https://www.jb51.cc/tag/teal/" target="_blank" >teal</a>l(sock): </span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">while</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> True: data </span>= sock.recv(256<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;">) </span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">if</span> <span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">not</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> data: sys.stdout.write(</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">\r\n*** EOF ***\r\n\r\n</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;">) sys.stdout.flush() </span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">break</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> sys.stdout.write(data) sys.stdout.flush()writer </span>= threading.Thread(target=wri<a href="https://www.jb51.cc/tag/teal/" target="_blank" >teal</a>l,args=<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;">(chan,))writer.start()</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">try</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;">: </span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">while</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> True: d </span>= sys.stdin.read(1<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;">) </span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">if</span> <span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">not</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> d: </span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">break</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> chan.send(d)</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">except</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> EOFError: </span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #008000;">#</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #008000;"> user hit ^Z or F6</span> <span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">pass</span>
<span >def
<span > run():
default_username =<span > getpass.getuser()
username = input(<span >'<span >Username [%s]: <span >' %<span > default_username)
<span >if len(username) ==<span > 0:
username =<span > default_usernamehost<a href="https://m.jb51.cc/tag/name/" target="_blank" >name</a> </span>= <a href="https://m.jb51.cc/tag/input/" target="_blank" >input</a>(<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">Host<a href="https://m.jb51.cc/tag/name/" target="_blank" >name</a>: </span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;">)</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">if</span> len(host<a href="https://m.jb51.cc/tag/name/" target="_blank" >name</a>) ==<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> 0: </span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">print</span>(<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">*** Host<a href="https://m.jb51.cc/tag/name/" target="_blank" >name</a> <a href="https://www.jb51.cc/tag/required/" target="_blank" >required</a>.</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;">) sys.exit(</span>1<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;">)tran </span>= p<a href="https://www.jb51.cc/tag/ara/" target="_blank" >ara</a>miko.Transport((host<a href="https://m.jb51.cc/tag/name/" target="_blank" >name</a>,22<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;">,))tran.start_cl<a href="https://m.jb51.cc/tag/IE/" target="_blank" >IE</a>nt()defa<a href="https://m.jb51.cc/tag/ul/" target="_blank" >ul</a>t_auth </span>= <span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">"</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">p</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">"</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;">auth </span>= <a href="https://m.jb51.cc/tag/input/" target="_blank" >input</a>(<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">Auth by (p)assword or (r)sa key[<a href="https://www.jb51.cc/tag/s/" target="_blank" >%s</a>] </span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span> %<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> defa<a href="https://m.jb51.cc/tag/ul/" target="_blank" >ul</a>t_auth)</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">if</span> len(auth) ==<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> 0: auth </span>=<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> defa<a href="https://m.jb51.cc/tag/ul/" target="_blank" >ul</a>t_auth</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">if</span> auth == <span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">r</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;">: defa<a href="https://m.jb51.cc/tag/ul/" target="_blank" >ul</a>t_path </span>= <a href="https://www.jb51.cc/tag/ospath/" target="_blank" >os.path</a>.join(os.environ[<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">HOME</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span>],<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">.ssh</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span>,<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;"><a href="https://m.jb51.cc/tag/ID/" target="_blank" >ID</a>_rsa</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;">) path </span>= <a href="https://m.jb51.cc/tag/input/" target="_blank" >input</a>(<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">RSA key [<a href="https://www.jb51.cc/tag/s/" target="_blank" >%s</a>]: </span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span> %<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> defa<a href="https://m.jb51.cc/tag/ul/" target="_blank" >ul</a>t_path) </span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">if</span> len(path) ==<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> 0: path </span>=<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> defa<a href="https://m.jb51.cc/tag/ul/" target="_blank" >ul</a>t_path </span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">try</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;">: key </span>=<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> p<a href="https://www.jb51.cc/tag/ara/" target="_blank" >ara</a>miko.RSAKey.from_private_key_<a href="https://m.jb51.cc/tag/file/" target="_blank" >file</a>(path) </span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">except</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> p<a href="https://www.jb51.cc/tag/ara/" target="_blank" >ara</a>miko.Password<a href="https://www.jb51.cc/tag/required/" target="_blank" >required</a>Exception: password </span>= <a href="https://www.jb51.cc/tag/getpass/" target="_blank" >getpass</a>.<a href="https://www.jb51.cc/tag/getpass/" target="_blank" >getpass</a>(<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">RSA key password: </span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;">) key </span>=<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> p<a href="https://www.jb51.cc/tag/ara/" target="_blank" >ara</a>miko.RSAKey.from_private_key_<a href="https://m.jb51.cc/tag/file/" target="_blank" >file</a>(path,password) tran.auth_pub<a href="https://m.jb51.cc/tag/li/" target="_blank" >li</a>ckey(user<a href="https://m.jb51.cc/tag/name/" target="_blank" >name</a>,key)</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">else</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;">: pw </span>= <a href="https://www.jb51.cc/tag/getpass/" target="_blank" >getpass</a>.<a href="https://www.jb51.cc/tag/getpass/" target="_blank" >getpass</a>(<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">Password for <a href="https://www.jb51.cc/tag/s/" target="_blank" >%s</a>@<a href="https://www.jb51.cc/tag/s/" target="_blank" >%s</a>: </span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span> %<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> (user<a href="https://m.jb51.cc/tag/name/" target="_blank" >name</a>,host<a href="https://m.jb51.cc/tag/name/" target="_blank" >name</a>)) tran.auth_password(user<a href="https://m.jb51.cc/tag/name/" target="_blank" >name</a>,pw)</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #008000;">#</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #008000;"> 打开<a href="https://www.jb51.cc/tag/yige/" target="_blank" >一个</a>通道</span>chan =<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> tran.open_session()</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #008000;">#</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #008000;"> <a href="https://www.jb51.cc/tag/huoqu/" target="_blank" >获取</a><a href="https://www.jb51.cc/tag/yige/" target="_blank" >一个</a>终端</span>
<span > chan.get_pty()
<span >#<span > 激活器
<span > chan.invoke_shell()in<a href="https://www.jb51.cc/tag/tera/" target="_blank" >tera</a>ctive_shell(chan)chan.close()tran.close()
<span >if <span >name == <span >'<span >main<span >'<span >:
run() 带密钥方式:
<span >from paramiko.py3compat <span >import<span > u<span >#<span > windows does not have termios...
<span >try<span >:
<span >import<span > termios
<span >import<span > tty
has_termios =<span > True
<span >except<span > importError:
has_termios =<span > False<span >def<span > interactive_shell(chan):
<span >if<span > has_termios:
posix_shell(chan)
<span >else<span >:
windows_shell(chan)<span >def<span > posix_shell(chan):
<span >import<span > select<a href="https://m.jb51.cc/tag/ol/" target="_blank" >ol</a>dtty </span>=<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> termios.tcgetattr(sys.stdin)</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #0000ff;">try</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;">: tty.setraw(sys.stdin.<a href="https://m.jb51.cc/tag/file/" target="_blank" >file</a>no()) tty.setcbreak(sys.stdin.<a href="https://m.jb51.cc/tag/file/" target="_blank" >file</a>no()) chan.settimeout(</span>0.0<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;">) log </span>= open(<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">handle.log</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #800000;">'</span>,pw)</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #008000;">#</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #008000;"> 打开<a href="https://www.jb51.cc/tag/yige/" target="_blank" >一个</a>通道</span>chan =<span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #000000;"> tran.open_session()</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #008000;">#</span><span https://m.jb51.cc/tag/color/" target="_blank" >color</a>: #008000;"> <a href="https://www.jb51.cc/tag/huoqu/" target="_blank" >获取</a><a href="https://www.jb51.cc/tag/yige/" target="_blank" >一个</a>终端</span>
<span > chan.get_pty()
<span >#<span > 激活器
<span > chan.invoke_shell()in<a href="https://www.jb51.cc/tag/tera/" target="_blank" >tera</a>ctive_shell(chan)chan.close()tran.close()
<span >if <span >name == <span >'<span >main<span >'<span >:
run() 总结 以上是内存溢出为你收集整理的堡垒机之paramiko模块全部内容,希望文章能够帮你解决堡垒机之paramiko模块所遇到的程序开发问题。
如果觉得内存溢出网站内容还不错,欢迎将内存溢出网站推荐给程序员好友。
赞
(0)
打赏
微信扫一扫
支付宝扫一扫
评论列表(0条)