در واقع SFTP و FTPS پروتکل های کاملا متفاوتی هستند. FTP به صورت ساده (Plain FTP) غیرامن بوده و اطلاعات دسترسی آن قابل بدست آمدن است!
FTPS (FTP/SSL) همان FTP است با استفاده از SSL (سرتیفیکیت) جهت امنیت بیشتر.
SFTP (SSH File Transfer Protocol) انتقال امن اطلاعات است.
همچنین چند تویح به زبان انگلیسی نیز قرار میدم در صورت نیاز جهت درک بهتر:
FTPS (FTP/SSL) همان FTP است با استفاده از SSL (سرتیفیکیت) جهت امنیت بیشتر.
SFTP (SSH File Transfer Protocol) انتقال امن اطلاعات است.
همچنین چند تویح به زبان انگلیسی نیز قرار میدم در صورت نیاز جهت درک بهتر:
FTPS (FTP/SSL) is a name used to provide a number of ways that FTP software can perform secure file transfers. Each way involves the use of a SSL/TLS layer below the standard FTP protocol to encrypt the control and/or data channels.
Pros: (مزایا)
Widely known and used
The communication can be read and understood by a human
Provides services for server-to-server file transfer
SSL/TLS has good authentication mechanisms (X.509 certificate features)
FTP and SSL/TLS support is built into many internet communications frameworks
Cons: (معایب)
Does not have a uniform directory listing format
Requires a secondary DATA channel, which makes it hard to use behind firewalls
Does not define a standard for file name character sets (encodings)
Not all FTP servers support SSL/TLS
Does not have a standard way to get and change file or directory attributes
------------------------------
SFTP (SSH File Transfer Protocol) is a network protocol that provides file transfer and manipulation functionality over any reliable data stream. It is typically used with the SSH-2 protocol (TCP port 22) to provide secure file transfer, but is intended to be usable with other protocols as well.
Pros: (مزایا)
Has a good standards background which strictly defines most (if not all) aspects of operations
Has only one connection (no need for a DATA connection)
The connection is always secured
The directory listing is uniform and machine-readable
The protocol includes operations for permission and attribute manipulation, file locking, and more functionality
Cons: (معایب)
The communication is binary and can not be logged “as is” for human reading
SSH keys are harder to manage and validate
The standards define certain things as optional or recommended, which leads to certain compatibility problems between different software titles from different vendors.
No server-to-server copy and recursive directory removal operations
No built-in SSH/SFTP support in VCL and .NET frameworks
Pros: (مزایا)
Widely known and used
The communication can be read and understood by a human
Provides services for server-to-server file transfer
SSL/TLS has good authentication mechanisms (X.509 certificate features)
FTP and SSL/TLS support is built into many internet communications frameworks
Cons: (معایب)
Does not have a uniform directory listing format
Requires a secondary DATA channel, which makes it hard to use behind firewalls
Does not define a standard for file name character sets (encodings)
Not all FTP servers support SSL/TLS
Does not have a standard way to get and change file or directory attributes
------------------------------
SFTP (SSH File Transfer Protocol) is a network protocol that provides file transfer and manipulation functionality over any reliable data stream. It is typically used with the SSH-2 protocol (TCP port 22) to provide secure file transfer, but is intended to be usable with other protocols as well.
Pros: (مزایا)
Has a good standards background which strictly defines most (if not all) aspects of operations
Has only one connection (no need for a DATA connection)
The connection is always secured
The directory listing is uniform and machine-readable
The protocol includes operations for permission and attribute manipulation, file locking, and more functionality
Cons: (معایب)
The communication is binary and can not be logged “as is” for human reading
SSH keys are harder to manage and validate
The standards define certain things as optional or recommended, which leads to certain compatibility problems between different software titles from different vendors.
No server-to-server copy and recursive directory removal operations
No built-in SSH/SFTP support in VCL and .NET frameworks
They are two completely different protocols.
FTPS is FTP with SSL for security. It uses a control channel and opens new connections for the data transfer. As it uses SSL, it requires a certificate.
SFTP (SSH File Transfer Protocol/Secure File Transfer Protocol) was designed as an extension of SSH to provide file transfer capability, so it usually uses only the SSH port for both data and control.
In most SSH server installations you will have SFTP support, but FTPS would need the additional configuration of a supported FTP server.
FTPS is FTP with SSL for security. It uses a control channel and opens new connections for the data transfer. As it uses SSL, it requires a certificate.
SFTP (SSH File Transfer Protocol/Secure File Transfer Protocol) was designed as an extension of SSH to provide file transfer capability, so it usually uses only the SSH port for both data and control.
In most SSH server installations you will have SFTP support, but FTPS would need the additional configuration of a supported FTP server.
SFTP is the most secure way of using FTP. It is FTP over SSH and therefor really secure. We would recommend the use of SFTP for security reasons, but wouldn’t recommend it in a shared hosting environment at this moment. The reason for this is that it is hard to explain your clients to use a different FTP client and also you have to enable SSH access for your users to enable SFTP.
FTPS, or FTP over TLS is a protocol that encrypts the login of your FTP session to prevent your FTP login to be stolen in a man-in-the-middle attack. FTPS is easy to use for your clients, almost every FTP program will allow you to connect over TLS.
FTPS, or FTP over TLS is a protocol that encrypts the login of your FTP session to prevent your FTP login to be stolen in a man-in-the-middle attack. FTPS is easy to use for your clients, almost every FTP program will allow you to connect over TLS.