åºæ
ã¡ããã© XNUMX é±éåãç§ã¯ã¿ã€ãã«ã«ç€ºããããŒãã«ã€ããŠãšãã»ã€ãæžããŠããã®ã§ãããã€ã³ã¿ãŒãããäžã«ã¯æè²æ å ±ãããã»ã©å€ããªããšããäºå®ã«çŽé¢ããŸããã äž»ã«ä¹Ÿããäºå®ãšã»ããã¢ããæé ã ããã§ãæ¬æãå°ãä¿®æ£ããŠèšäºãšããŠæçš¿ããããšã«ããŸããã
FTPãšã¯
FTP (File Transfer Protocol) ã¯ããããã¯ãŒã¯äžã§ãã¡ã€ã«ã転éããããã®ãããã³ã«ã§ãã ããã¯ãåºæ¬çãªã€ãŒãµããã ãããã³ã«ã® 1971 ã€ã§ãã 959 幎ã«ç»å Žããåœå㯠DARPA ãããã¯ãŒã¯ã§æŽ»åããŠããŸããã çŸåšãHTTP ãšåæ§ã«ããã¡ã€ã«è»¢éã¯äžé£ã® TCP/IP (äŒéå¶åŸ¡ãããã³ã«/ã€ã³ã¿ãŒããã ãããã³ã«) ãããã³ã«ã§æ§æãããã¢ãã«ã«åºã¥ããŠããŸãã RFC XNUMX ã§å®çŸ©ãããŠããŸãã
ãããã³ã«ã§ã¯æ¬¡ã®ããšãå®çŸ©ãããŠããŸãã
- ãšã©ãŒãã§ãã¯ã¯ã©ã®ããã«è¡ãããã®ã§ããããïŒ
- ããŒã¿ã®ããã±ãŒãžåæ¹æ³ïŒããã±ãŒãžåã䜿çšããå ŽåïŒ
- éä¿¡åŽããã€ã¹ã¯ã¡ãã»ãŒãžãçµäºããããšãã©ã®ããã«ããŠç€ºãã®ã§ãããã?
- åä¿¡ããã€ã¹ã¯ã¡ãã»ãŒãžãåä¿¡ããããšãã©ã®ããã«ããŠç€ºãã®ã§ãããã?
ã¯ã©ã€ã¢ã³ããšãµãŒããŒéã®éä¿¡
FTP æäœäžã«çºçããããã»ã¹ã詳ããèŠãŠã¿ãŸãããã æ¥ç¶ã¯ãŠãŒã¶ãŒã®ãããã³ã« ã€ã³ã¿ããªã¿ã«ãã£ãŠåæåãããŸãã 亀ææ©ã¯ãTELNET æšæºã®å¶åŸ¡ãã£ãã«ãä»ããŠå¶åŸ¡ãããŸãã FTP ã³ãã³ãã¯ããŠãŒã¶ãŒã®ãããã³ã« ã€ã³ã¿ããªã¿ã«ãã£ãŠçæããããµãŒããŒã«éä¿¡ãããŸãã ãµãŒããŒã®å¿çã¯ãå¶åŸ¡ãã£ãã«çµç±ã§ãŠãŒã¶ãŒã«ãéä¿¡ãããŸãã äžè¬ã«ããŠãŒã¶ãŒã¯ãµãŒããŒã®ãããã³ã« ã€ã³ã¿ããªã¿ãšã®æ¥ç¶ãããŠãŒã¶ãŒã®ã€ã³ã¿ããªã¿ä»¥å€ã®æ段ã§ç¢ºç«ããããšãã§ããŸãã
FTP ã®äž»ãªç¹åŸŽã¯ãäºéæ¥ç¶ã䜿çšããããšã§ãã ãã®ãã¡ã® 21 ã€ã¯ãµãŒããŒã«ã³ãã³ããéä¿¡ããããã«äœ¿çšãããããã©ã«ãã§ã¯ TCP ããŒã XNUMX çµç±ã§è¡ãããŸãããããã¯å€æŽå¯èœã§ãã å¶åŸ¡æ¥ç¶ã¯ãã¯ã©ã€ã¢ã³ãããµãŒããŒãšéä¿¡ããŠããéãååšããŸãã ãã·ã³éã§ããŒã¿ã転éãããšãã¯ãå¶åŸ¡ãã£ãã«ãéããŠããå¿ èŠããããŸãã éãããšããŒã¿éä¿¡ãåæ¢ããŸãã XNUMX çªç®ã®æ¹æ³ã§ã¯ãçŽæ¥ããŒã¿è»¢éãè¡ãããŸãã ã¯ã©ã€ã¢ã³ããšãµãŒããŒéã§ãã¡ã€ã«è»¢éãçºçãããã³ã«éããŸãã è€æ°ã®ãã¡ã€ã«ãåæã«è»¢éãããå Žåãããããã®ãã¡ã€ã«ãç¬èªã®äŒéãã£ãã«ãéããŸãã
FTP ã¯ã¢ã¯ãã£ã ã¢ãŒããŸãã¯ããã·ã ã¢ãŒãã§åäœã§ããã©ã¡ããéžæãããã«ãã£ãŠæ¥ç¶ã®ç¢ºç«æ¹æ³ã決ãŸããŸãã ã¢ã¯ãã£ã ã¢ãŒãã§ã¯ãã¯ã©ã€ã¢ã³ãã¯ãµãŒããŒãšã® TCP å¶åŸ¡æ¥ç¶ãäœæãããã® IP ã¢ãã¬ã¹ãšä»»æã®ã¯ã©ã€ã¢ã³ã ããŒãçªå·ããµãŒããŒã«éä¿¡ãããµãŒããŒããã®ã¢ãã¬ã¹ãšããŒãçªå·ã䜿çšã㊠TCP æ¥ç¶ãéå§ããã®ãåŸ ã¡ãŸãã ã¯ã©ã€ã¢ã³ãããã¡ã€ã¢ãŠã©ãŒã«ã®èåŸã«ãããåä¿¡ TCP æ¥ç¶ãåãå ¥ããããšãã§ããªãå Žåã¯ãããã·ã ã¢ãŒãã䜿çšã§ããŸãã ãã®ã¢ãŒãã§ã¯ãã¯ã©ã€ã¢ã³ãã¯å¶åŸ¡ãããŒã䜿çšã㊠PASV ã³ãã³ãããµãŒããŒã«éä¿¡ãããµãŒããŒãã IP ã¢ãã¬ã¹ãšããŒãçªå·ãåãåããŸãããã®åŸãã¯ã©ã€ã¢ã³ãã¯ããã䜿çšããŠä»»æã®ããŒãããããŒã¿ ãããŒãéããŸãã
ããŒã¿ã XNUMX å°ç®ã®ãã·ã³ã«è»¢éãããå¯èœæ§ããããŸãã ãã®å ŽåããŠãŒã¶ãŒã¯ XNUMX ã€ã®ãµãŒããŒã§å¶åŸ¡ãã£ãã«ãæ§æãããããã®éã®çŽæ¥ããŒã¿ ãã£ãã«ãæ§æããŸãã å¶åŸ¡ã³ãã³ãã¯ãŠãŒã¶ãŒãä»ããŠéä¿¡ãããããŒã¿ã¯ãµãŒããŒéã§çŽæ¥éä¿¡ãããŸãã
ãããã¯ãŒã¯çµç±ã§ããŒã¿ãéä¿¡ããå Žåã次㮠XNUMX ã€ã®ããŒã¿è¡šçŸã䜿çšã§ããŸãã
- ASCII â ããã¹ãã«äœ¿çšãããŸãã ããŒã¿ã¯ãå¿ èŠã«å¿ããŠãéä¿¡åã«éä¿¡ãã¹ãäžã®æåè¡šçŸãããXNUMX ããã ASCIIãã«å€æããã(å¿ èŠã«å¿ããŠå床) åä¿¡ãã¹ãäžã®æåè¡šçŸã«å€æãããŸãã ç¹ã«æ¹è¡æåãå€æŽãããŸãã ãã®ããããã®ã¢ãŒãã¯ãã¬ãŒã³ ããã¹ã以äžã®ãã¡ã€ã«ãå«ããã¡ã€ã«ã«ã¯é©ããŠããŸããã
- ãã€ã㪠ã¢ãŒã - éä¿¡ããã€ã¹ã¯åãã¡ã€ã«ããã€ãåäœã§éä¿¡ããåä¿¡è ã¯åä¿¡æã«ãã€ã ã¹ããªãŒã ãä¿åããŸãã ãã®ã¢ãŒãã®ãµããŒãã¯ããã¹ãŠã® FTP å®è£ ã«å¯ŸããŠæšå¥šãããŠããŸãã
- EBCDIC â EBCDIC ãšã³ã³ãŒãã£ã³ã°ã§ãã¹ãéã§ãã¬ãŒã³ ããã¹ãã転éããããã«äœ¿çšãããŸãã ãã以å€ã®ç¹ã§ã¯ããã®ã¢ãŒã㯠ASCII ã¢ãŒããšäŒŒãŠããŸãã
- ããŒã«ã« ã¢ãŒã - åäžã®èšå®ãæ〠XNUMX å°ã®ã³ã³ãã¥ãŒã¿ããASCII ã«å€æããã«ç¬èªã®åœ¢åŒã§ããŒã¿ãéä¿¡ã§ããããã«ããŸãã
ããŒã¿è»¢éã¯ã次㮠XNUMX ã€ã®ã¢ãŒãã®ããããã§å®è¡ã§ããŸãã
- ã¹ããªãŒã ã¢ãŒã - ããŒã¿ã¯é£ç¶ã¹ããªãŒã ãšããŠéä¿¡ãããFTP ã«ããåŠçã®å®è¡ãäžèŠã«ãªããŸãã 代ããã«ããã¹ãŠã®åŠç㯠TCP ã«ãã£ãŠå®è¡ãããŸãã ãã¡ã€ã«ã®çµããã€ã³ãžã±ãŒã¿ãŒã¯ãããŒã¿ãã¬ã³ãŒãã«åå²ããå Žåãé€ããŠå¿ èŠãããŸããã
- ããã㯠ã¢ãŒã - FTP ã¯ããŒã¿ãããã€ãã®ããã㯠(ããã㌠ãããã¯ããã€ãæ°ãããŒã¿ ãã£ãŒã«ã) ã«åå²ããTCP ã«éä¿¡ããŸãã
- å§çž®ã¢ãŒã â ããŒã¿ã¯åäžã®ã¢ã«ãŽãªãºã ã䜿çšããŠå§çž®ãããŸã (éåžžã¯ã©ã³ã¬ã³ã°ã¹ããšã³ã³ãŒãããããšã«ãã£ãŠ)ã
FTP ãµãŒããŒã¯ããã¡ã€ã«è»¢éãããã³ã«ã䜿çšããæ©èœãæäŸãããµãŒããŒã§ãã åŸæ¥ã® Web ãµãŒããŒãšã¯ç°ãªãããã€ãã®æ©èœããããŸãã
- ãŠãŒã¶ãŒèªèšŒãå¿ èŠã§ã
- ãã¹ãŠã®æäœã¯çŸåšã®ã»ãã·ã§ã³å ã§å®è¡ãããŸã
- ãã¡ã€ã« ã·ã¹ãã ã§ããŸããŸãªã¢ã¯ã·ã§ã³ãå®è¡ããæ©èœ
- æ¥ç¶ããšã«å¥ã®ãã£ãã«ã䜿çšãããŸã
FTP ã¯ã©ã€ã¢ã³ãã¯ãFTP çµç±ã§ãªã¢ãŒã ãµãŒããŒã«æ¥ç¶ãããã¡ã€ã« ã·ã¹ãã ã®èŠçŽ ã䜿çšããŠãªã¢ãŒã ãµãŒããŒäžã§å¿ èŠãªã¢ã¯ã·ã§ã³ãå®è¡ã§ããããã«ããããã°ã©ã ã§ãã ã¯ã©ã€ã¢ã³ãã¯ãã©ãŠã¶ã§ããå¯èœæ§ãé«ãããã®ã¢ãã¬ã¹ ããŒã«ã¯ãäžè¬ç㪠URL ãããã¯å³ã«åŸã£ãŠããªã¢ãŒã ãµãŒããŒäžã®ç¹å®ã®ãã£ã¬ã¯ããªãŸãã¯ãã¡ã€ã«ãžã®ãã¹ã§ããã¢ãã¬ã¹ãå ¥åããå¿ èŠããããŸãã
ftp://user:pass@address:port/directory/file
ãã ãããã®ã³ã³ããã¹ã㧠Web ãã©ãŠã¶ã䜿çšãããšãç®çã®ãã¡ã€ã«ã®è¡šç€ºãŸãã¯ããŠã³ããŒãã®ã¿ãå¯èœã«ãªããŸãã FTP ã®å©ç¹ããã¹ãŠæ倧éã«æŽ»çšããã«ã¯ãã¯ã©ã€ã¢ã³ããšããŠå°çšã®ãœãããŠã§ã¢ã䜿çšããå¿ èŠããããŸãã
FTP èªèšŒã§ã¯ããŠãŒã¶ãŒå/ãã¹ã¯ãŒã ã¹ããŒã ã䜿çšããŠã¢ã¯ã»ã¹ãèš±å¯ããŸãã ãŠãŒã¶ãŒå㯠USER ã³ãã³ãã§ãµãŒããŒã«éä¿¡ããããã¹ã¯ãŒã㯠PASS ã³ãã³ãã§éä¿¡ãããŸãã ã¯ã©ã€ã¢ã³ãã«ãã£ãŠæäŸãããæ å ±ããµãŒããŒã«ãã£ãŠåãå ¥ãããããšããµãŒããŒã¯ã¯ã©ã€ã¢ã³ãã«æåŸ ãéä¿¡ããã»ãã·ã§ã³ãéå§ãããŸãã ãµãŒããŒããã®æ©èœããµããŒãããŠããå ŽåããŠãŒã¶ãŒã¯è³æ Œæ å ±ãæäŸããã«ãã°ã€ã³ã§ããŸããããµãŒããŒã¯ãã®ãããªã»ãã·ã§ã³ã«å¯ŸããŠéå®çãªã¢ã¯ã»ã¹ããèš±å¯ã§ããŸããã
FTP ãµãŒãã¹ãæäŸãããã¹ãã¯ãå¿å FTP ã¢ã¯ã»ã¹ãæäŸã§ããŸãã ãŠãŒã¶ãŒã¯éåžžããŠãŒã¶ãŒåãšããŠãanonymousã(äžéšã® FTP ãµãŒããŒã§ã¯å€§æåãšå°æåãåºå¥ãããå ŽåããããŸã) ã䜿çšããŠãã°ã€ã³ããŸãã éåžžããŠãŒã¶ãŒã¯ãã¹ã¯ãŒãã®ä»£ããã«é»åã¡ãŒã« ã¢ãã¬ã¹ã®å ¥åãæ±ããããŸãããå®éã«ã¯æ€èšŒã¯è¡ãããŸããã ãœãããŠã§ã¢æŽæ°ãæäŸããå€ãã® FTP ãã¹ãã¯ãå¿åã¢ã¯ã»ã¹ããµããŒãããŠããŸãã
ãããã³ã«å³
FTP æ¥ç¶äžã®ã¯ã©ã€ã¢ã³ããšãµãŒããŒã®å¯Ÿè©±ã¯ã次ã®ããã«èŠèŠåã§ããŸãã
ã»ãã¥ã¢FTP
FTP ã¯åœåãè€æ°ã®è»äºæœèšãæ©é¢éã®éä¿¡ãç®çãšããŠãããããå®å šæ§ã確ä¿ããããšãç®çãšãããã®ã§ã¯ãããŸããã§ããã ããããã€ã³ã¿ãŒãããã®çºå±ãšæ®åã«äŒŽããäžæ£ã¢ã¯ã»ã¹ã®å±éºæ§ã¯äœåã«ãé«ãŸã£ãŠããŸãã ããŸããŸãªçš®é¡ã®æ»æãããµãŒããŒãä¿è·ããå¿ èŠããããŸããã 1999 幎 2577 æãRFC XNUMX ã®äœæè ã¯ãè匱æ§ã次ã®åé¡ãªã¹ãã«ãŸãšããŸããã
- é ãæ»æïŒããŠã³ã¹æ»æïŒ
- ã¹ããŒãã£ã³ã°æ»æ
- ãã«ãŒããã©ãŒã¹æ»æ
- ãã±ãããã£ããã£ãã¹ãããã£ã³ã°
- ããŒãççš
éåžžã® FTP ã«ã¯æå·åããã圢åŒã§ããŒã¿ã転éããæ©èœããªãããããŠãŒã¶ãŒåããã¹ã¯ãŒããã³ãã³ãããã®ä»ã®æ å ±ãæ»æè ã«ãã£ãŠç°¡åãã€ç°¡åã«ååãããå¯èœæ§ããããŸãã ãã®åé¡ã«å¯Ÿããéåžžã®è§£æ±ºçã¯ãè匱ãªãããã³ã« (FTPS) ã®ãå®å šãªãTLS ã§ä¿è·ãããããŒãžã§ã³ããŸãã¯ã»ãšãã©ã® Secure Shell ãããã³ã«å®è£ ã§æäŸããã SFTP/SCP ãªã©ã®ããå®å šãªå¥ã®ãããã³ã«ã䜿çšããããšã§ãã
FTPS
FTPS (FTP + SSL) ã¯ãæšæºã®ãã¡ã€ã«è»¢éãããã³ã«ã®æ¡åŒµæ©èœã§ããããã®åºæ¬æ©èœã« SSL (Secure Sockets Layer) ãããã³ã«ã䜿çšããæå·åã»ãã·ã§ã³ã®äœæãè¿œå ãããŠããŸãã çŸåšãä¿è·ã¯ããé«åºŠãªã¢ããã° TLS (Transport Layer Security) ã«ãã£ãŠæäŸãããŠããŸãã
SSL
SSL ãããã³ã«ã¯ãã€ã³ã¿ãŒãããæ¥ç¶ã®ã»ãã¥ãªãã£ãšãã©ã€ãã·ãŒã確ââä¿ããããã«ã1996 幎㫠Netscape Communications ã«ãã£ãŠææ¡ãããŸããã ãã®ãããã³ã«ã¯ã¯ã©ã€ã¢ã³ããšãµãŒããŒã®èªèšŒããµããŒãããã¢ããªã±ãŒã·ã§ã³ã«äŸåãããHTTPãFTPãããã³ Telnet ãããã³ã«ã«å¯ŸããŠééçã§ãã
SSL ãã³ãã·ã§ã€ã¯ ãããã³ã«ã¯ããµãŒããŒèªèšŒãšãªãã·ã§ã³ã®ã¯ã©ã€ã¢ã³ãèªèšŒã® XNUMX ã€ã®æ®µéã§æ§æãããŸãã æåã®æ®µéã§ããµãŒããŒã¯èšŒææžãšæå·åãã©ã¡ãŒã¿ãŒãéä¿¡ããããšã§ã¯ã©ã€ã¢ã³ãã®èŠæ±ã«å¿çããŸãã 次ã«ãã¯ã©ã€ã¢ã³ãã¯ãã¹ã¿ãŒ ããŒãçæãããµãŒããŒã®å ¬éããŒã§æå·åãããµãŒããŒã«éä¿¡ããŸãã ãµãŒããŒã¯ãç§å¯ããŒã䜿çšããŠãã¹ã¿ãŒ ããŒã埩å·åããã¯ã©ã€ã¢ã³ãã®ãã¹ã¿ãŒ ããŒã«ãã£ãŠèªèšŒãããã¡ãã»ãŒãžãè¿ãããšã«ãã£ãŠã¯ã©ã€ã¢ã³ãã«å¯ŸããŠãµãŒããŒèªèº«ãèªèšŒããŸãã
åŸç¶ã®ããŒã¿ã¯ããã®ãã¹ã¿ãŒ ããŒãã掟çããããŒã䜿çšããŠæå·åãããèªèšŒãããŸãã XNUMX çªç®ã®ã¹ããã (ãªãã·ã§ã³) ã§ã¯ããµãŒããŒãã¯ã©ã€ã¢ã³ãã«ãªã¯ãšã¹ããéä¿¡ããã¯ã©ã€ã¢ã³ãã¯ç¬èªã®ããžã¿ã«çœ²åãšå ¬éããŒèšŒææžãå«ããªã¯ãšã¹ããè¿ãããšã§ãµãŒããŒã«å¯ŸããŠèªèº«ãèªèšŒããŸãã
SSL ã¯ããŸããŸãªæå·åã¢ã«ãŽãªãºã ããµããŒãããŠããŸãã éä¿¡ã®ç¢ºç«äžã«ãRSA å ¬éããŒæå·åã·ã¹ãã ã䜿çšãããŸãã ããŒäº€æåŸãRC2ãRC4ãIDEAãDESãTripleDES ãªã©ã®ããŸããŸãªæå·ã䜿çšãããŸãã ã¡ãã»ãŒãž ãã€ãžã§ã¹ããäœæããã¢ã«ãŽãªãºã ã§ãã MD5 ã䜿çšãããŸãã å ¬éããŒèšŒææžã®æ§æ㯠X.509 ã§èª¬æãããŠããŸãã
SSL ã®éèŠãªå©ç¹ã® XNUMX ã€ã¯ããœãããŠã§ã¢ ãã©ãããã©ãŒã ããå®å šã«ç¬ç«ããŠããããšã§ãã ãã®ãããã³ã«ã¯ç§»æ€æ§ã®ååã«åºã¥ããŠéçºãããŠããããã®æ§ç¯ã®ã€ããªãã®ãŒã¯ããã䜿çšãããã¢ããªã±ãŒã·ã§ã³ã«äŸåããŸããã ããã«ãSSL ãããã³ã«ã®äžã«ä»ã®ãããã³ã«ãééçã«ãªãŒããŒã¬ã€ã§ããããšãéèŠã§ãã ã¿ãŒã²ããã®æ å ±ãããŒã®ä¿è·ã®åºŠåããããã«é«ããããSSL ã®æå·åæ©èœãä»ã®æ確ã«å®çŸ©ãããã¿ã¹ã¯ã«é©å¿ãããããã§ãã
SSLæ¥ç¶
SSL ã«ãã£ãŠæäŸãããå®å šãªãã£ãã«ã«ã¯ã次㮠XNUMX ã€ã®äž»èŠãªããããã£ããããŸãã
- ãã£ã³ãã«ã¯ãã©ã€ããŒãã§ãã ç§å¯éµã決å®ããããã®ç°¡åãªå¯Ÿè©±ã®åŸããã¹ãŠã®ã¡ãã»ãŒãžã«æå·åã䜿çšãããŸãã
- ãã£ãã«ã¯èªèšŒãããŠããŸãã äŒè©±ã®ãµãŒããŒåŽã¯åžžã«èªèšŒãããŸãããã¯ã©ã€ã¢ã³ãåŽã¯ãªãã·ã§ã³ã§èªèšŒãããŸãã
- ãã£ã³ãã«ã¯ä¿¡é Œã§ããŸãã ã¡ãã»ãŒãžã®ãã©ã³ã¹ããŒãã«ã¯ã(MAC ã䜿çšãã) æŽåæ§ãã§ãã¯ãå«ãŸããŸãã
FTPSã®ç¹åŸŽ
FTPS ã«ã¯ãã»ãã¥ãªãã£ãæäŸããç°ãªãæ¹æ³ã䜿çšãã XNUMX ã€ã®å®è£ ããããŸãã
- æé»çãªæ¹æ³ã§ã¯ãããŒã¿ãéä¿¡ããåã«æšæºã® SSL ãããã³ã«ã䜿çšããŠã»ãã·ã§ã³ã確ç«ããå¿ èŠããããããéåžžã® FTP ã¯ã©ã€ã¢ã³ãããã³ãµãŒããŒãšã®äºææ§ã倱ãããŸãã FTPS ããµããŒãããªãã¯ã©ã€ã¢ã³ããšã®äžäœäºææ§ã®ããã«ãTCP ããŒã 990 ãå¶åŸ¡æ¥ç¶ã«äœ¿çšããã989 ãããŒã¿è»¢éã«äœ¿çšãããFTP ãããã³ã«ã®æšæºããŒã 21 ãç¶æãããŸãã ãã®æ¹æ³ã¯æ代é ãã§ãããšèããããŠããŸãã
- Explicit ã®æ¹ãã¯ããã«äŸ¿å©ã§ããæšæºã® FTP ã³ãã³ãã䜿çšããŸãããå¿çæã«ããŒã¿ãæå·åããããããFTP ãš FTPS ã®äž¡æ¹ã§åãå¶åŸ¡æ¥ç¶ã䜿çšã§ããŸãã ã¯ã©ã€ã¢ã³ãã¯ãµãŒããŒããã®å®å šãªããŒã¿è»¢éãæ瀺çã«èŠæ±ããæå·åæ¹æ³ãæ¿èªããå¿ èŠããããŸãã ã¯ã©ã€ã¢ã³ããå®å šãªè»¢éãèŠæ±ããªãå ŽåãFTPS ãµãŒããŒã¯å®å šã§ãªãæ¥ç¶ãç¶æãããéããæš©å©ãæã¡ãŸãã èªèšŒããã³ããŒã¿ ã»ãã¥ãªã㣠ããŽã·ãšãŒã·ã§ã³ ã¡ã«ããºã ããæ°ãã FTP AUTH ã³ãã³ããå«ã RFC 2228 ã«åºã¥ããŠè¿œå ãããŸããã ãã®æšæºã¯ã»ãã¥ãªã㣠ã¡ã«ããºã ãæ瀺çã«å®çŸ©ããŠããŸããããã¯ã©ã€ã¢ã³ããäžèšã®ã¢ã«ãŽãªãºã ã䜿çšããŠå®å šãªæ¥ç¶ãéå§ããå¿ èŠãããããšãæå®ããŠããŸãã ãµãŒããŒãå®å šãªæ¥ç¶ããµããŒãããŠããªãå Žåã¯ããšã©ãŒ ã³ãŒã 504 ãè¿ãããå¿ èŠããããŸããFTPS ã¯ã©ã€ã¢ã³ãã¯ãFEAT ã³ãã³ãã䜿çšããŠããµãŒããŒããµããŒãããã»ãã¥ãªã㣠ãããã³ã«ã«é¢ããæ å ±ãååŸã§ããŸããããµãŒããŒã¯ãã©ã®ã»ãã¥ãªã㣠ã¬ãã«ãå ¬éããå¿ èŠã¯ãããŸããããµããŒãããŸãã æãäžè¬ç㪠FTPS ã³ãã³ã㯠AUTH TLS ãš AUTH SSL ã§ããããã TLS ãš SSL ã»ãã¥ãªãã£ãæäŸããŸãã
SFTP
SFTP (Secure File Transfer Protocol) ã¯ãå®å šãªãã£ãã«äžã§å®è¡ãããã¢ããªã±ãŒã·ã§ã³å±€ã®ãã¡ã€ã«è»¢éãããã³ã«ã§ãã åãç¥èªãæ〠(Simple File Transfer Protocol) ãšæ··åããªãã§ãã ããã FTPS ãåã« FTP ã®æ¡åŒµã§ããå ŽåãSFTP 㯠SSH (Secure Shell) ãåºç€ãšããŠäœ¿çšããå¥åã®é¢é£æ§ã®ãªããããã³ã«ã§ãã
ã»ãã¥ã¢ã·ã§ã«
ãã®ãããã³ã«ã¯ãSecsh ãšåŒã°ãã IETF ã°ã«ãŒãã® 14 ã€ã«ãã£ãŠéçºãããŸããã æ°ãã SFTP ãããã³ã«ã®å®çšçãªããã¥ã¡ã³ãã¯æ£åŒãªæšæºã«ã¯ãªããŸããã§ããããã¢ããªã±ãŒã·ã§ã³éçºã«ç©æ¥µçã«äœ¿çšããå§ããŸããã ãã®åŸããããã³ã«ã® 2006 ã€ã®ããŒãžã§ã³ããªãªãŒã¹ãããŸããã ããããæ©èœãåŸã ã«å¢å ãããããXNUMX 幎 XNUMX æ XNUMX æ¥ã«ããããžã§ã¯ãã®äž»èŠãªã¿ã¹ã¯ (SSH éçº) ãå®äºããæ©èœãäžè¶³ããŠããããããããã³ã«ã®éçºäœæ¥ãäžæ¢ããããšã決å®ãããŸãããæ¬æ Œçãªãªã¢ãŒã ãã¡ã€ã« ã·ã¹ãã ãããã³ã«ã®éçºã«é²ãã®ã«ååãªå°é家ã¬ãã«ãåããŠããŸãã
SSH ã¯ããªãã¬ãŒãã£ã³ã° ã·ã¹ãã ã®ãªã¢ãŒãå¶åŸ¡ãš TCP æ¥ç¶ã®ãã³ããªã³ã° (ãã¡ã€ã«è»¢éãªã©) ãå¯èœã«ãããããã¯ãŒã¯ ãããã³ã«ã§ãã Telnet ãããã³ã«ã rlogin ãããã³ã«ãšæ©èœçã«ã¯äŒŒãŠããŸãããããããšã¯ç°ãªããéä¿¡ããããã¹ã¯ãŒããå«ããã¹ãŠã®ãã©ãã£ãã¯ãæå·åãããŸãã SSH ã§ã¯ãããŸããŸãªæå·åã¢ã«ãŽãªãºã ãéžæã§ããŸãã SSH ã¯ã©ã€ã¢ã³ããš SSH ãµãŒããŒã¯ãã»ãšãã©ã®ãããã¯ãŒã¯ ãªãã¬ãŒãã£ã³ã° ã·ã¹ãã ã§äœ¿çšã§ããŸãã
SSH ã䜿çšãããšãã»ãã¥ãªãã£ã§ä¿è·ãããŠããªãç°å¢ã§ããä»ã®ã»ãŒãã¹ãŠã®ãããã¯ãŒã¯ ãããã³ã«ãå®å šã«è»¢éã§ããŸãã ãããã£ãŠãã³ãã³ã ã·ã§ã«ã䜿çšããŠã³ã³ãã¥ãŒã¿äžã§ãªã¢ãŒãäœæ¥ã§ããã ãã§ãªããæå·åããããã£ãã«ãä»ããŠãªãŒãã£ãª ã¹ããªãŒã ããã㪠(Web ã«ã¡ã©ãªã©ãã) ãéä¿¡ããããšãã§ããŸãã SSH ã¯ãåŸç¶ã®æå·åã®ããã«éä¿¡ããŒã¿ã®å§çž®ã䜿çšããããšãã§ããŸããããã¯ãããšãã°ãX WindowSystem ã¯ã©ã€ã¢ã³ãããªã¢ãŒãã§èµ·åããå Žåã«äŸ¿å©ã§ãã
ãããã³ã«ã®æåã®ããŒãžã§ã³ã§ãã SSH-1 ã¯ããã«ã·ã³ãå·¥ç§å€§åŠ (ãã£ã³ã©ã³ã) ã®ç 究è Tatu Ulönen ã«ãã£ãŠ 1995 幎ã«éçºãããŸããã SSH-1 ã¯ãrloginãtelnetãrsh ãããã³ã«ãããåªãããã©ã€ãã·ãŒãæäŸããããã«äœæãããŸããã 1996 幎ã«ããããã³ã«ã®ããå®å šãªããŒãžã§ã³ã§ãã SSH-2 ãéçºãããŸãããããã㯠SSH-1 ãšã¯äºææ§ããããŸããã ãã®ãããã³ã«ã¯ããã«äººæ°ãåãã2000 幎ãŸã§ã«çŽ 2 äžäººã®ãŠãŒã¶ãŒãæ±ããŠããŸããã çŸåšããSSHããšããçšèªã¯éåžž SSH-2006 ãæå³ããŸãã ãã®ãããã³ã«ã®æåã®ããŒãžã§ã³ã¯ãé倧ãªæ¬ ç¹ããããããçŸåšã§ã¯å®éã«ã¯äœ¿çšãããŠããŸããã XNUMX 幎ã«ããã®ãããã³ã«ã¯ IETF ã¯ãŒãã³ã° ã°ã«ãŒãã«ãã£ãŠã€ã³ã¿ãŒãããæšæºãšããŠæ¿èªãããŸããã
SSH ã«ã¯ããã©ã€ããŒãåçšãšç¡æã®ãªãŒãã³ãœãŒã¹ãšãã 2006 ã€ã®äžè¬çãªå®è£ ããããŸãã ç¡æã®å®è£ 㯠OpenSSH ãšåŒã°ããŸãã 80 幎ãŸã§ã«ãã€ã³ã¿ãŒãããäžã®ã³ã³ãã¥ãŒã¿ã® XNUMX% ã OpenSSH ã䜿çšããŸããã ãã®ç¬èªã®å®è£ ã¯ãTectia Corporation ã®å®å šåäŒç€Ÿã§ãã SSH Communications Security ã«ãã£ãŠéçºãããŠãããéå¶å©ç®çã§ã®äœ¿çšã¯ç¡æã§ãã ãããã®å®è£ ã«ã¯ãã»ãŒåãã³ãã³ãã®ã»ãããå«ãŸããŠããŸãã
SSH-2 ãããã³ã«ã¯ãTelnet ãããã³ã«ãšã¯ç°ãªãããã©ãã£ãã¯çèŽæ»æ (ãã¹ãããã£ã³ã°ã) ã«ã¯èæ§ããããŸãããäžéè æ»æã«ã¯èæ§ããããŸããã SSH-2 ãããã³ã«ã¯ããã§ã«ç¢ºç«ãããŠããã»ãã·ã§ã³ã«åå ããããã€ãžã£ãã¯ãããããããšãã§ããªããããã»ãã·ã§ã³ ãã€ãžã£ãã¯æ»æã«ãèæ§ããããŸãã
ããŒãã¯ã©ã€ã¢ã³ãã«ãŸã ç¥ãããŠããªããã¹ãã«æ¥ç¶ãããšãã®äžéè æ»æãé²ãããã«ãã¯ã©ã€ã¢ã³ã ãœãããŠã§ã¢ã¯ãŠãŒã¶ãŒã«ãã㌠ãã£ã³ã¬ãŒããªã³ããã衚瀺ããŸãã ã¯ã©ã€ã¢ã³ã ãœãããŠã§ã¢ã«ãã£ãŠè¡šç€ºããããã㌠ã¹ãããã·ã§ããããšãã§ããã°ä¿¡é Œã§ããéä¿¡ãã£ãã«ãéããŠãŸãã¯çŽæ¥ååŸãããµãŒã㌠ã㌠ã¹ãããã·ã§ããã泚ææ·±ã確èªããããšããå§ãããŸãã
SSH ãµããŒãã¯ãã¹ãŠã® UNIX ç³»ã·ã¹ãã ã§å©çšã§ããã»ãšãã©ã®ã·ã¹ãã ã«ã¯æšæºãŠãŒãã£ãªãã£ãšã㊠ssh ã¯ã©ã€ã¢ã³ããšãµãŒããŒãå«ãŸããŠããŸãã é UNIX OS çšã® SSH ã¯ã©ã€ã¢ã³ãã®å®è£ ã¯æ°å€ããããŸãã ãã®ãããã³ã«ã¯ãéèŠãªããŒãã管çããããã®å®å šã§ãªã Telnet ãããã³ã«ã®ä»£æ¿ãœãªã¥ãŒã·ã§ã³ãšããŠããã©ãã£ã㯠ã¢ãã©ã€ã¶ãŒãšããŒã«ã« ãããã¯ãŒã¯ã®éçšãäžæããæ¹æ³ãåºãéçºãããåŸãéåžžã«äººæ°ãåŸãŸããã
SSHã䜿çšããéä¿¡
SSH çµç±ã§åäœããã«ã¯ãSSH ãµãŒããŒãš SSH ã¯ã©ã€ã¢ã³ããå¿ èŠã§ãã ãµãŒããŒã¯ã¯ã©ã€ã¢ã³ã ãã·ã³ããã®æ¥ç¶ããªãã¹ã³ããæ¥ç¶ã確ç«ããããšèªèšŒãå®è¡ãããã®åŸã¯ã©ã€ã¢ã³ããžã®ãµãŒãã¹ãéå§ããŸãã ã¯ã©ã€ã¢ã³ãã¯ããªã¢ãŒã ãã·ã³ã«ãã°ã€ã³ããŠã³ãã³ããå®è¡ããããã«äœ¿çšãããŸãã
FTPSãšã®æ¯èŒ
SFTP ãæšæºã® FTP ããã³ FTPS ãšç°ãªãäž»ãªç¹ã¯ãSFTP ããã¹ãŠã®ã³ãã³ãããŠãŒã¶ãŒåããã¹ã¯ãŒããããã³ãã®ä»ã®æ©å¯æ å ±ãå®å šã«æå·åããããšã§ãã
FTPS ãããã³ã«ãš SFTP ãããã³ã«ã¯ã©ã¡ãããé察称ã¢ã«ãŽãªãºã (RSAãDSA)ã察称ã¢ã«ãŽãªãºã (DES/3DESãAESãTwhofish ãªã©)ãããã³ããŒäº€æã¢ã«ãŽãªãºã ã®çµã¿åããã䜿çšããŸãã èªèšŒã«ã¯ãFTPS (ããæ£ç¢ºã«ã¯ãFTP äžã® SSL/TLS) 㯠X.509 蚌ææžã䜿çšããŸãããSFTP (SSH ãããã³ã«) 㯠SSH ããŒã䜿çšããŸãã
X.509 蚌ææžã«ã¯ãå ¬éããŒãšææè ã®èšŒææžã«é¢ããããã€ãã®æ å ±ãå«ãŸããŠããŸãã äžæ¹ããã®æ å ±ã䜿çšãããšã蚌ææžèªäœã®æŽåæ§ã蚌ææžã®ä¿¡é Œæ§ãææè ãæ€èšŒã§ããŸãã X.509 蚌ææžã«ã¯å¯Ÿå¿ããç§å¯ããŒããããéåžžãã»ãã¥ãªãã£äžã®çç±ãã蚌ææžãšã¯å¥ã«ä¿åãããŸãã
SSH ããŒã«ã¯å ¬éããŒã®ã¿ãå«ãŸããŸã (察å¿ããç§å¯ããŒã¯å¥ã«ä¿åãããŸã)ã ããŒã®ææè ã«é¢ããæ å ±ã¯å«ãŸããŸããã äžéšã® SSH å®è£ ã§ã¯èªèšŒã« X.509 蚌ææžã䜿çšããŸãããå®éã«ã¯èšŒææžãã§ãŒã³å šäœãæ€èšŒããããã§ã¯ãªããå ¬éããŒã®ã¿ã䜿çšãããŸã (ãã®ãããªèªèšŒã¯äžå®å šã«ãªããŸã)ã
ãŸãšã
FTP ãããã³ã«ã¯ãå€ãããããã«ããããããããããã¯ãŒã¯äžã®æ å ±ã®ä¿åãšé åžã«ãããŠäŸç¶ãšããŠéèŠãªåœ¹å²ãæãããŠããã®ã¯ééããããŸããã ããã¯äŸ¿å©ã§å€æ©èœãªæšæºåããããããã³ã«ã§ãã å€ãã®ãã¡ã€ã« ã¢ãŒã«ã€ãã¯ããã«åºã¥ããŠæ§ç¯ãããŠãããããããªããã°æè¡çãªäœæ¥ã¯ããã»ã©å¹æçã§ã¯ãããŸããã ããã«ãã»ããã¢ãããç°¡åã§ããµãŒããŒããã³ã¯ã©ã€ã¢ã³ã ããã°ã©ã ã¯ãçŸåšããã³ããã»ã©ææ°ã§ã¯ãªãã»ãŒãã¹ãŠã®ãã©ãããã©ãŒã ã«å¯Ÿå¿ããŠããŸãã
ããã«ããã®ä¿è·ãããããŒãžã§ã³ã¯ãçŸä»£ç€ŸäŒã«ãããä¿åããã³éä¿¡ããŒã¿ã®æ©å¯æ§ã®åé¡ã解決ããŸãã ã©ã¡ãã®æ°ãããããã³ã«ã«ãé·æãšçæãããã圹å²ãå°ãç°ãªããŸãã ãã¡ã€ã« ã¢ãŒã«ã€ããå¿ èŠãªé åã§ã¯ãç¹ã«åŸæ¥ã® FTP ããã§ã«äœ¿çšãããŠããå Žåã¯ãFTPS ã䜿çšããããšããå§ãããŸãã SFTP ã¯å€ããããã³ã«ãšäºææ§ããªãããããŸãäžè¬çã§ã¯ãããŸãããããªã¢ãŒã管çã·ã¹ãã ã®äžéšã§ãããããå®å šæ§ãé«ããããå€ãã®æ©èœãåããŠããŸãã
ãœãŒã¹ã®ãªã¹ã
æŠèŠãFTP ãããã³ã«ã äžè¬çãªæ å ±ãšæ©èœã èŠçŽãSSHãCMIPãTelnet ãããã³ã«ã ã¬ããŒããSSL/TLSã
åºæïŒ habr.com