Protokol pro p�enos souboru aplika�n� vrstvy. Je nez�visl� na platform� a opera�n�m syst�mu. Pracuje na principu klient-server a je definov�n v RFC959.
Protokol ftp nelze pova�ovat za bezpe�n�, proto�e daat jsou pomoc� n�j pos�l�na ne�ifrovan� a linovoln� �to�n�k je schopen data odposlechnout.
Komunikace klient server pracuje na portech TCP 20 a TCP 21. Port 20 slou�� k p�enosu dat a port 21 slou�� k pos�l�n� ��d�c�ch ftp p��kaz�. Server naslouch� na portu 21 na spojen� od klienta. Klient se p�ipojuje, a na portu 20 mu server otv�r� datov� spojen�.
Aktivn� - u�ivatel�v po��ta� m� vn�j�� IP adresu nebo jsou na n�j z routeru p�esm�rov�ny alespo� p��slu�n� porty, mus� m�t z�rove� povolenu komunikaci na zm�n�n�ch portech ve firewallu. Spojen� navazuje server
Pasivn� - po��ta� je za firewallem nebo routerem kter� nechceme, nem��eme konfigurovat -> spojen� otev�r� klient, posila serveru adresu a port kde nasloucha
Chroot jail neboli v�zen� ve zm�n�n�m ko�enov�m disku. slou�� k zakryt� skute�n� sdres��ov� struktury a zamezen� p��stupu mimo tento ko�en.
Virtu�ln�ch u�ivatel� m��eme vyu��t pokud chceme na serveru vytv��et ftp ��ty a nepo��t�me s jin�m typem p��stupu u�ivatele (ssh).
Najde uplatn�n� na webhostingov�ch serverech.
ABOR ACCT ALLO APPE CDUP CWD DELE HELP [ ] LIST [ ] MKD MODE NLST [ ] NOOP PASS PASV PORT PWD QUIT REIN REST RETR RMD RNFR RNTO SITE SMNT STAT [ ] STOR STOU STRU SYST TYPE USER
200 Command okay.
500 Syntax error, command unrecognized.
This may include errors such as command line too long.
501 Syntax error in parameters or arguments.
202 Command not implemented, superfluous at this site.
502 Command not implemented.
503 Bad sequence of commands.
504 Command not implemented for that parameter.
110 Restart marker reply.
In this case, the text is exact and not left to the
particular implementation; it must read:
MARK yyyy = mmmm
Where yyyy is User-process data stream marker, and mmmm
server's equivalent marker (note the spaces between markers
and "=").
211 System status, or system help reply.
212 Directory status.
213 File status.
214 Help message.
On how to use the server or the meaning of a particular
non-standard command. This reply is useful only to the
human user.
215 NAME system type.
Where NAME is an official system name from the list in the
Assigned Numbers document.
120 Service ready in nnn minutes.
220 Service ready for new user.
221 Service closing control connection.
Logged out if appropriate.
421 Service not available, closing control connection.
This may be a reply to any command if the service knows it
must shut down.
125 Data connection already open; transfer starting.
225 Data connection open; no transfer in progress.
425 Can't open data connection.
226 Closing data connection.
Requested file action successful (for example, file
transfer or file abort).
426 Connection closed; transfer aborted.
227 Entering Passive Mode (h1,h2,h3,h4,p1,p2).
230 User logged in, proceed.
530 Not logged in.
331 User name okay, need password.
332 Need account for login.
532 Need account for storing files.
150 File status okay; about to open data connection.
250 Requested file action okay, completed.
257 "PATHNAME" created.
350 Requested file action pending further information.
450 Requested file action not taken.
File unavailable (e.g., file busy).
550 Requested action not taken.
File unavailable (e.g., file not found, no access).
451 Requested action aborted. Local error in processing.
551 Requested action aborted. Page type unknown.
452 Requested action not taken.
Insufficient storage space in system.
552 Requested file action aborted.
Exceeded storage allocation (for current directory or
dataset).
553 Requested action not taken.
File name not allowed.
ftp - jde o maly program do prikazove radky, ktery otevre ftp spojeni na server a vy m��ete zad�vat ftp p��kazy.
gftp - gnome ftp
krusader - file browser
vetsina www prohlizecu
VSFTPD (Very Secure File Transfer Protocol Daemon)
jde o malink� ale velmi rychl� a zd� se �e i bezpe�n� ftp server, bezpe�nost spo��v� v�ak pouze v bezchybnosti. ve verzi 2.0 ji� pou��v� SSL komunikaci a potom lze mluvit o bezpe�n�m ftps.
Jeho konfigurace je velmi rychl� a jednoduch�, nepodporuje virtu�ln� u�ivatele.
/etc/vsftpd.conf - direktivy kterym venovat pozornost
write_enable=YES ftpd_banner="FTP server." anonymous_enable=NO chroot_local_user=YES chroot_list_enable=YES chroot_list_file=/etc/vsftpd.chroot_list check_shell=NO pasv_enable=YES pasv_min_port=1024 pasv_max_port=1030 listen=YES
Architektura server klient, jeden nebo v�ce deamon� se nastav� jako server, klienti si s nimi synchronizuj� sv� adres��e. P�en�� pouze rozd�ly v souborech, pro p�enos pou��v� ssh nebo rsh. Pro ov��ov�n� se pou��v� MD4 hash.
Spu�t�n� serveru se prov�d� p��kazem rsync --daemon bu� jako inet super-server nebo samostatn�ho d�mona
konfigurace
/etc/rsyncd.conf
uid = uzivatel
gid = skupina
use chroot = yes
max connections = 4
pid file = /etc/rsyncd.pid
[ftp]
path = /home/ftp
comment = ftp export area
uid = nobody
gid = nobody
use chroot = no
max connections = 4
syslog facility = local5
pid file = /var/run/rsyncd.pid
[ftp]
path = /var/ftp/pub
comment = whole ftp area (approx 6.1 GB)
[cvs]
path = /data/cvs
comment = CVS repository (requires authentication)
auth users = pavel, petr
secrets file = /etc/rsyncd.secrets
Rsync klient poslou�� k synchronizaci dat. Slou�� tedy k p�enosu dat mezi rsync serverem a klientem.
Syntaxe
rsync [OPTIONS] [USER@]HOST::SRC [DEST]
rsync -av /home/koudak/ /dest
rsync mamto.cz::home/koudak/ /dest
-a archive mode
-r Rekurzivn�
-v Verbose m�d
-l Zachav� symb. linky
-H Zachov� hardlinky
-S efektivn� zach�zen� s d�rav�mi soubory
http://www.fi.muni.cz/kas/p090
http://www.fi.muni.cz/kas/p077
http://www.wikipedia.org
http://www.abclinuxu.cz
http://www.root.cz