VPS如何配置密钥登录替代密码登录？

VPS如何换成密钥登录？安全连接与操作指南

ssh-keygen -t rsa -b 4096 -C "youremail@example.com"

Generating public/private rsa key pair.
Enter file in which to save the key (/home/user/.ssh/idrsa):
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in /home/user/.ssh/idrsa
Your public key has been saved in /home/user/.ssh/idrsa.pub
The key fingerprint is:
SHA256:xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx youremail@example.com

步骤2：上传公钥到VPS

ssh-copy-id -i ~/.ssh/idrsa.pub username@yourvpsip

/usr/bin/ssh-copy-id: INFO: Source of key(s) to be installed: "/home/user/.ssh/idrsa.pub"
/usr/bin/ssh-copy-id: INFO: attempting to log in with the new key(s), to filter out any that are already installed
/usr/bin/ssh-copy-id: INFO: 1 key(s) remain to be installed
username@yourvpsip's password:
Number of key(s) added: 1
Now try logging into the machine with: "ssh 'username@yourvpsip'"

sudo nano /etc/ssh/sshdconfig

# 确保以下配置项正确设置
PubkeyAuthentication yes
AuthorizedKeysFile .ssh/authorizedkeys
PasswordAuthentication no
PermitEmptyPasswords no
ChallengeResponseAuthentication no

步骤4：测试并应用配置

sudo systemctl reload sshd
在新终端中测试连接
ssh -i ~/.ssh/idrsa username@yourvpsip

# 重启服务输出
$ sudo systemctl reload sshd
测试连接输出
Last login: Mon Nov 01 10:30:45 2025 from xxx.xxx.xxx.xxx
[username@vps ~]$