用hmac验证客户端的合法性

服务器端程序

import os
import hmac
import socket


def auth(conn):
    secret_key = b'rock'
    rand_b = os.urandom(32)
    conn.send(rand_b)
    obj = hmac.new(secret_key, rand_b)
    res1 = obj.digest()
    res2 = conn.recv(1024)
    cmp_res = hmac.compare_digest(res1, res2)
    return cmp_res


server = socket.socket()
server.bind(('127.0.0.1', 9000))
server.listen(5)

conn, addr = server.accept()
res = auth(conn)
if res:
    print('是合法的客户端')
    conn.send('你好'.encode())
else:
    conn.close()

conn.close()
server.close()

客服端程序

import hmac
import socket


def auth(client):
    secret_key = b'rock'
    rand_b = client.recv(32)
    obj = hmac.new(secret_key, rand_b)
    res2 = obj.digest()
    client.send(res2)


client = socket.socket()
client.connect(('127.0.0.1', 9000))
auth(client)
msg = client.recv(1024)
print(msg.decode())
client.close()

posted @ 2019-01-25 10:50 平平无奇小辣鸡阅读(172) 评论(0) 编辑收藏举报

刷新页面返回顶部

保持学习，天天进步

用hmac验证客户端的合法性

公告