{"id":3110,"date":"2025-12-07T16:42:46","date_gmt":"2025-12-07T13:42:46","guid":{"rendered":"https:\/\/www.dchost.com\/blog\/ftp-yerine-sftp-kullanmanin-zamani-geldi\/"},"modified":"2025-12-07T16:42:46","modified_gmt":"2025-12-07T13:42:46","slug":"ftp-yerine-sftp-kullanmanin-zamani-geldi","status":"publish","type":"post","link":"https:\/\/www.dchost.com\/blog\/ftp-yerine-sftp-kullanmanin-zamani-geldi\/","title":{"rendered":"FTP Yerine SFTP Kullanman\u0131n Zaman\u0131 Geldi"},"content":{"rendered":"<div class=\"dchost-blog-content-wrapper\"><p>{<br \/>\n  &#8220;title&#8221;: &#8220;FTP\u2019den SFTP\u2019ye Ge\u00e7i\u015f: <a href=\"https:\/\/www.dchost.com\/tr\/web-hosting\">payla\u015f\u0131ml\u0131 hosting<\/a> ve <a href=\"https:\/\/www.dchost.com\/tr\/vps\">VPS<\/a>\u2019te G\u00fcvenli Dosya Transferi&#8221;,<br \/>\n  &#8220;content&#8221;: &#8220;<\/p>\n<p>Dosya transferi, bir web sitesinin veya uygulaman\u0131n en temel ama \u00e7o\u011fu zaman en hafife al\u0131nan s\u00fcre\u00e7lerinden biri. Proje planlama toplant\u0131lar\u0131nda performans, \u00f6l\u00e7eklenebilirlik, SEO gibi ba\u015fl\u0131klara uzun uzun vakit ayr\u0131l\u0131rken; FTP ile sunucuya dosya atmak genellikle kimsenin tart\u0131\u015fmad\u0131\u011f\u0131, \u201czaten \u00e7al\u0131\u015f\u0131yor\u201d kabul edilen bir detay olarak kal\u0131yor. Ancak g\u00fcvenlik denetimi veya s\u0131zma testi raporu elinize geldi\u011finde, eski al\u0131\u015fkanl\u0131klar\u0131n asl\u0131nda en zay\u0131f halka oldu\u011funu \u00e7ok net g\u00f6r\u00fcyorsunuz. Klasik FTP tam olarak bu noktalardan biri.<\/p>\n<p>FTP, \u015fifre dahil t\u00fcm trafi\u011fi \u015fifrelenmemi\u015f \u015fekilde g\u00f6nderir. Yani ayn\u0131 a\u011fa ba\u011fl\u0131 k\u00f6t\u00fc niyetli biri, uygun ara\u00e7larla hem kullan\u0131c\u0131 ad\u0131n\u0131z\u0131 hem \u015fifrenizi hem de aktard\u0131\u011f\u0131n\u0131z dosyalar\u0131 okuyabilir. Ortadaki adam (MITM) sald\u0131r\u0131lar\u0131, \u015fifre tekrar kullan\u0131m\u0131 ve g\u00fcvenli olmayan Wi\u2011Fi ba\u011flant\u0131lar\u0131yla birle\u015fti\u011finde, FTP kullanmak sunucunuzda kap\u0131y\u0131 a\u00e7\u0131k b\u0131rakmak anlam\u0131na gelir.<\/p>\n<p>Bu yaz\u0131da, FTP\u2019den SFTP\u2019ye nas\u0131l ge\u00e7ilece\u011fini; payla\u015f\u0131ml\u0131 hosting ve VPS ortamlar\u0131nda SFTP, FTPS ve SSH anahtarlar\u0131n\u0131 nas\u0131l y\u00f6netmeniz gerekti\u011fini ad\u0131m ad\u0131m anlataca\u011f\u0131z. DCHost altyap\u0131s\u0131nda dosya transferini g\u00fcvenli, tekrar edilebilir ve denetlenebilir hale getirmek istiyorsan\u0131z; bu rehberi bir \u201cyap\u0131lacaklar listesi\u201d gibi kullanabilirsiniz.<\/p>\n<div id=\"toc_container\" class=\"toc_transparent no_bullets\"><p class=\"toc_title\">\u0130&ccedil;indekiler<\/p><ul class=\"toc_list\"><li><a href=\"#FTP_SFTP_FTPS_Temel_Farklar_ve_Ne_Zaman_Hangisi\"><span class=\"toc_number toc_depth_1\">1<\/span> FTP, SFTP, FTPS: Temel Farklar ve Ne Zaman Hangisi?<\/a><ul><li><a href=\"#FTP_Nedir_ve_Neden_Guvensizdir\"><span class=\"toc_number toc_depth_2\">1.1<\/span> FTP Nedir ve Neden G\u00fcvensizdir?<\/a><\/li><li><a href=\"#SFTP_Nedir\"><span class=\"toc_number toc_depth_2\">1.2<\/span> SFTP Nedir?<\/a><\/li><li><a href=\"#FTPS_Nedir\"><span class=\"toc_number toc_depth_2\">1.3<\/span> FTPS Nedir?<\/a><\/li><li><a href=\"#Hangisini_Secmeliyim\"><span class=\"toc_number toc_depth_2\">1.4<\/span> Hangisini Se\u00e7meliyim?<\/a><\/li><\/ul><\/li><li><a href=\"#Paylasimli_Hostingte_SFTPye_Gecis\"><span class=\"toc_number toc_depth_1\">2<\/span> Payla\u015f\u0131ml\u0131 Hosting\u2019te SFTP\u2019ye Ge\u00e7i\u015f<\/a><ul><li><a href=\"#1_Hosting_Panelinde_SFTPSSH_Yetkisini_Kontrol_Edin\"><span class=\"toc_number toc_depth_2\">2.1<\/span> 1. Hosting Panelinde SFTP\/SSH Yetkisini Kontrol Edin<\/a><\/li><li><a href=\"#2_Mevcut_FTP_Bilgilerinizi_SFTPye_Uyarlayin\"><span class=\"toc_number toc_depth_2\">2.2<\/span> 2. Mevcut FTP Bilgilerinizi SFTP\u2019ye Uyarlay\u0131n<\/a><\/li><li><a href=\"#3_SSH_Anahtar_Temelli_Giris_Paylasimli_Hosting\"><span class=\"toc_number toc_depth_2\">2.3<\/span> 3. SSH Anahtar Temelli Giri\u015f (Payla\u015f\u0131ml\u0131 Hosting)<\/a><\/li><li><a href=\"#4_Istemci_Ayarlari_Sifre_Yerine_Anahtar\"><span class=\"toc_number toc_depth_2\">2.4<\/span> 4. \u0130stemci Ayarlar\u0131: \u015eifre Yerine Anahtar<\/a><\/li><\/ul><\/li><li><a href=\"#VPS_ve_dedicated_sunucularda_SFTP_SSH_Anahtarlari\"><span class=\"toc_number toc_depth_1\">3<\/span> VPS ve dedicated sunucularda SFTP + SSH Anahtarlar\u0131<\/a><ul><li><a href=\"#1_FTP_Servisini_Kapatin\"><span class=\"toc_number toc_depth_2\">3.1<\/span> 1. FTP Servisini Kapat\u0131n<\/a><\/li><li><a href=\"#2_SSH_Yapilandirmasi_SFTP_Alt_Sistemi\"><span class=\"toc_number toc_depth_2\">3.2<\/span> 2. SSH Yap\u0131land\u0131rmas\u0131: SFTP Alt Sistemi<\/a><\/li><li><a href=\"#3_SFTP_Icin_Ayri_Kullanicilar_ve_Klasor_Izolasyonu\"><span class=\"toc_number toc_depth_2\">3.3<\/span> 3. SFTP \u0130\u00e7in Ayr\u0131 Kullan\u0131c\u0131lar ve Klas\u00f6r \u0130zolasyonu<\/a><\/li><li><a href=\"#4_SSH_Anahtar_Cifti_Olusturma_VPS_Icin_Onerilen_Yol\"><span class=\"toc_number toc_depth_2\">3.4<\/span> 4. SSH Anahtar \u00c7ifti Olu\u015fturma (VPS \u0130\u00e7in \u00d6nerilen Yol)<\/a><\/li><li><a href=\"#5_Firewall_ve_Port_Ayarlari\"><span class=\"toc_number toc_depth_2\">3.5<\/span> 5. Firewall ve Port Ayarlar\u0131<\/a><\/li><\/ul><\/li><li><a href=\"#Guvenli_Dosya_Transferi_Icin_Pratik_Senaryolar\"><span class=\"toc_number toc_depth_1\">4<\/span> G\u00fcvenli Dosya Transferi \u0130\u00e7in Pratik Senaryolar<\/a><ul><li><a href=\"#1_Ajans_Birden_Fazla_Musteri_Sitesi_Yoneten_Ekip\"><span class=\"toc_number toc_depth_2\">4.1<\/span> 1. Ajans: Birden Fazla M\u00fc\u015fteri Sitesi Y\u00f6neten Ekip<\/a><\/li><li><a href=\"#2_ETicaret_Sitesi_Canli_Ortam_Staging_Ortami\"><span class=\"toc_number toc_depth_2\">4.2<\/span> 2. E\u2011Ticaret Sitesi: Canl\u0131 Ortam + Staging Ortam\u0131<\/a><\/li><li><a href=\"#3_Gelistirici_Takimi_Ortak_VPS_Uzerinde_Calisan_Birden_Fazla_Kisi\"><span class=\"toc_number toc_depth_2\">4.3<\/span> 3. Geli\u015ftirici Tak\u0131m\u0131: Ortak VPS \u00dczerinde \u00c7al\u0131\u015fan Birden Fazla Ki\u015fi<\/a><\/li><\/ul><\/li><li><a href=\"#SFTP_ve_FTPS_Guvenligini_Tamamlayan_Diger_Katmanlar\"><span class=\"toc_number toc_depth_1\">5<\/span> SFTP ve FTPS G\u00fcvenli\u011fini Tamamlayan Di\u011fer Katmanlar<\/a><ul><li><a href=\"#1_SSLTLS_Katmanini_Guncel_Tutmak\"><span class=\"toc_number toc_depth_2\">5.1<\/span> 1. SSL\/TLS Katman\u0131n\u0131 G\u00fcncel Tutmak<\/a><\/li><li><a href=\"#2_Guvenli_Parola_Politikalari_ve_2FA\"><span class=\"toc_number toc_depth_2\">5.2<\/span> 2. G\u00fcvenli Parola Politikalar\u0131 ve 2FA<\/a><\/li><li><a href=\"#3_Loglama_ve_Izleme\"><span class=\"toc_number toc_depth_2\">5.3<\/span> 3. Loglama ve \u0130zleme<\/a><\/li><\/ul><\/li><li><a href=\"#DCHost_Altyapisinda_FTPden_SFTPye_Gecis_Icin_Yol_Haritasi\"><span class=\"toc_number toc_depth_1\">6<\/span> DCHost Altyap\u0131s\u0131nda FTP\u2019den SFTP\u2019ye Ge\u00e7i\u015f \u0130\u00e7in Yol Haritas\u0131<\/a><ul><li><a href=\"#1_Envanter_Cikartin\"><span class=\"toc_number toc_depth_2\">6.1<\/span> 1. Envanter \u00c7\u0131kart\u0131n<\/a><\/li><li><a href=\"#2_Paylasimli_Hostingte_SFTPyi_Aktif_Hale_Getirin\"><span class=\"toc_number toc_depth_2\">6.2<\/span> 2. Payla\u015f\u0131ml\u0131 Hosting\u2019te SFTP\u2019yi Aktif Hale Getirin<\/a><\/li><li><a href=\"#3_VPSDedicated_Sunucuda_FTPyi_Kapatin\"><span class=\"toc_number toc_depth_2\">6.3<\/span> 3. VPS\/Dedicated Sunucuda FTP\u2019yi Kapat\u0131n<\/a><\/li><li><a href=\"#4_Ekip_ve_Ajanslarla_Iletisimi_Yonetin\"><span class=\"toc_number toc_depth_2\">6.4<\/span> 4. Ekip ve Ajanslarla \u0130leti\u015fimi Y\u00f6netin<\/a><\/li><li><a href=\"#5_Test_Dogrulama_ve_Izleme\"><span class=\"toc_number toc_depth_2\">6.5<\/span> 5. Test, Do\u011frulama ve \u0130zleme<\/a><\/li><\/ul><\/li><li><a href=\"#Kisa_Ozet_ve_Son_Tavsiyeler\"><span class=\"toc_number toc_depth_1\">7<\/span> K\u0131sa \u00d6zet ve Son Tavsiyeler<\/a><\/li><\/ul><\/div>\n<h2><span id=\"FTP_SFTP_FTPS_Temel_Farklar_ve_Ne_Zaman_Hangisi\">FTP, SFTP, FTPS: Temel Farklar ve Ne Zaman Hangisi?<\/span><\/h2>\n<h3><span id=\"FTP_Nedir_ve_Neden_Guvensizdir\">FTP Nedir ve Neden G\u00fcvensizdir?<\/span><\/h3>\n<p>FTP (File Transfer Protocol), internetin ilk zamanlar\u0131ndan beri kullan\u0131lan, \u00e7ok eski bir protokol. En b\u00fcy\u00fck problemi ise \u00e7ok basit: <strong>hi\u00e7bir \u015feyi \u015fifrelemiyor<\/strong>.<\/p>\n<ul>\n<li>Kullan\u0131c\u0131 ad\u0131n\u0131z ve \u015fifreniz d\u00fcz metin olarak gider.<\/li>\n<li>G\u00f6nderdi\u011finiz dosyalar a\u011fda okunabilir durumdad\u0131r.<\/li>\n<li>Sunucu kimli\u011fi do\u011frulamas\u0131 yoktur; sahte bir sunucuya ba\u011flanma riskiniz vard\u0131r.<\/li>\n<\/ul>\n<p>\u00d6zellikle ortak Wi\u2011Fi a\u011flar\u0131nda, ofis i\u00e7i payla\u015f\u0131lan a\u011flarda veya g\u00fcvenli\u011fi zay\u0131f router\u2019larda, FTP kullanmak neredeyse davetiye \u00e7\u0131karmak demektir. Modern bir ortamda FTP yaln\u0131zca kapal\u0131, izole, i\u00e7 a\u011f senaryolar\u0131nda ve ekstra koruma katmanlar\u0131yla tolere edilebilir.<\/p>\n<h3><span id=\"SFTP_Nedir\">SFTP Nedir?<\/span><\/h3>\n<p>SFTP (SSH File Transfer Protocol), ismindeki \u201cFTP\u201d sizi yan\u0131ltmas\u0131n; teknik olarak FTP\u2019nin \u015fifrelenmi\u015f versiyonu de\u011fil, <strong>SSH (Secure Shell) \u00fczerinde \u00e7al\u0131\u015fan bamba\u015fka bir protokold\u00fcr<\/strong>.<\/p>\n<ul>\n<li>T\u00fcm trafik SSH t\u00fcneli i\u00e7inde u\u00e7tan uca \u015fifrelenir.<\/li>\n<li>Sunucu kimli\u011fi do\u011frulan\u0131r (host key), MITM riski ciddi \u015fekilde azal\u0131r.<\/li>\n<li>\u015eifre yerine SSH anahtar (key) ile oturum a\u00e7abilirsiniz.<\/li>\n<li>Tek port (genelde 22) \u00fczerinden \u00e7al\u0131\u015f\u0131r, firewall y\u00f6netimi daha basittir.<\/li>\n<\/ul>\n<p>SFTP sunucusu, \u00e7o\u011fu Linux sunucuda zaten SSH hizmetinin (<code>sshd<\/code>) par\u00e7as\u0131d\u0131r. Yani ayr\u0131 bir \u201cSFTP sunucusu kuray\u0131m\u201d derdi \u00e7o\u011fu zaman yoktur; do\u011fru kullan\u0131c\u0131 eri\u015fimlerini tan\u0131mlaman\u0131z yeterlidir.<\/p>\n<h3><span id=\"FTPS_Nedir\">FTPS Nedir?<\/span><\/h3>\n<p>FTPS (FTP over SSL\/TLS), klasik FTP\u2019nin SSL\/TLS ile sarmalanm\u0131\u015f halidir. Yani temel protokol ayn\u0131 kal\u0131rken, ileti\u015fim HTTPS benzeri bir katmanla \u015fifrelenir.<\/p>\n<ul>\n<li>Kullan\u0131c\u0131 ad\u0131, \u015fifre ve dosyalar TLS ile \u015fifrelenir.<\/li>\n<li>SSL\/TLS sertifikas\u0131 y\u00f6netimi gerektirir.<\/li>\n<li>Aktif\/pasif mod, birden \u00e7ok port ve firewall ayarlar\u0131yla u\u011fra\u015ft\u0131rabilir.<\/li>\n<li>Baz\u0131 eski kurumsal uygulamalar FTPS\u2019i \u015fart ko\u015fabilir.<\/li>\n<\/ul>\n<p>FTPS, \u00f6zellikle FTP\u2019ye al\u0131\u015fm\u0131\u015f kurumlar\u0131n \u201cen az de\u011fi\u015fiklikle \u015fifreleme\u201d ihtiyac\u0131n\u0131 kar\u015f\u0131lar. Ancak payla\u015f\u0131ml\u0131 hosting ve modern VPS kullan\u0131m\u0131nda, <strong>pratik ve g\u00fcvenli varsay\u0131lan se\u00e7im SFTP<\/strong> olacakt\u0131r.<\/p>\n<h3><span id=\"Hangisini_Secmeliyim\">Hangisini Se\u00e7meliyim?<\/span><\/h3>\n<ul>\n<li><strong>Yeni kurulumlar ve web projeleri:<\/strong> Tercih SFTP olmal\u0131.<\/li>\n<li><strong>Mevcut FTP kullanan ama de\u011fi\u015fim imkan\u0131 olan sistemler:<\/strong> SFTP\u2019ye ge\u00e7i\u015f planlay\u0131n.<\/li>\n<li><strong>Eski kurumsal uygulamalar, zorunlu FTP entegrasyonlar\u0131:<\/strong> FTPS kullan\u0131n; en az\u0131ndan trafi\u011fi \u015fifreleyin.<\/li>\n<\/ul>\n<p>Geriye d\u00f6n\u00fck uyumluluk gibi \u00e7ok \u00f6zel bir gereksiniminiz yoksa, bu rehberi SFTP\u2019ye ge\u00e7i\u015f i\u00e7in temel yol haritan\u0131z olarak d\u00fc\u015f\u00fcnebilirsiniz.<\/p>\n<h2><span id=\"Paylasimli_Hostingte_SFTPye_Gecis\">Payla\u015f\u0131ml\u0131 Hosting\u2019te SFTP\u2019ye Ge\u00e7i\u015f<\/span><\/h2>\n<p>Bir\u00e7ok kullan\u0131c\u0131 i\u00e7in ilk temas noktas\u0131 payla\u015f\u0131ml\u0131 hosting. cPanel veya benzeri bir panel ile birden fazla sitenizi y\u00f6netiyor, dosyalar\u0131 FTP ile at\u0131yor olabilirsiniz. Buradaki iyi haber \u015fu: <strong>G\u00fcncel payla\u015f\u0131ml\u0131 hosting altyap\u0131lar\u0131nda SFTP deste\u011fi \u00e7o\u011fu zaman zaten haz\u0131rd\u0131r<\/strong>.<\/p>\n<h3><span id=\"1_Hosting_Panelinde_SFTPSSH_Yetkisini_Kontrol_Edin\">1. Hosting Panelinde SFTP\/SSH Yetkisini Kontrol Edin<\/span><\/h3>\n<p>DCHost payla\u015f\u0131ml\u0131 hosting paketlerinde, paket t\u00fcr\u00fcne ve g\u00fcvenlik politikas\u0131na g\u00f6re SSH\/SFTP eri\u015fimi profil baz\u0131nda a\u00e7\u0131labilir. \u0130lk ad\u0131m olarak:<\/p>\n<ul>\n<li>cPanel veya kulland\u0131\u011f\u0131n\u0131z panelde <strong>SSH Access<\/strong> \/ <strong>Terminal<\/strong> \/ <strong>SSH Keys<\/strong> gibi men\u00fcleri kontrol edin.<\/li>\n<li>Dok\u00fcmanlarda \u201cFTP\u201d yerine \u201cSFTP ile ba\u011flan\u0131n\u201d uyar\u0131s\u0131 olup olmad\u0131\u011f\u0131na bak\u0131n.<\/li>\n<li>\u015e\u00fcphe varsa DCHost deste\u011fe bilet a\u00e7\u0131p hesab\u0131n\u0131z i\u00e7in SFTP durumunu netle\u015ftirin.<\/li>\n<\/ul>\n<p>Payla\u015f\u0131ml\u0131 hosting g\u00fcvenli\u011fini genel hatlar\u0131yla g\u00f6zden ge\u00e7irmek isterseniz, <a href=\"https:\/\/www.dchost.com\/blog\/yeni-acilan-web-siteleri-icin-hosting-guvenlik-check-listi-ilk-gunden-yapilmasi-gereken-20-ayar\/\">yeni a\u00e7\u0131lan web siteleri i\u00e7in haz\u0131rlad\u0131\u011f\u0131m\u0131z g\u00fcvenlik check\u2011list\u2019inde<\/a> dosya eri\u015fimi ve panel g\u00fcvenli\u011fiyle ilgili de pratik \u00f6neriler bulabilirsiniz.<\/p>\n<h3><span id=\"2_Mevcut_FTP_Bilgilerinizi_SFTPye_Uyarlayin\">2. Mevcut FTP Bilgilerinizi SFTP\u2019ye Uyarlay\u0131n<\/span><\/h3>\n<p>\u00c7o\u011fu durumda, FTP kullan\u0131c\u0131 bilgileriniz SFTP i\u00e7in de ayn\u0131d\u0131r:<\/p>\n<ul>\n<li><strong>Host:<\/strong> genelde alan ad\u0131n\u0131z (\u00f6r. <code>example.com<\/code>) veya sunucu ad\u0131<\/li>\n<li><strong>Port:<\/strong> FTP i\u00e7in 21 iken, SFTP i\u00e7in \u00e7o\u011funlukla 22 (farkl\u0131 olabilir)<\/li>\n<li><strong>Protokol:<\/strong> FTP yerine <strong>SFTP \u2013 SSH File Transfer Protocol<\/strong><\/li>\n<li><strong>Kullan\u0131c\u0131 ad\u0131\/\u015fifre:<\/strong> FTP ile ayn\u0131 giri\u015f bilgileri<\/li>\n<\/ul>\n<p>Dosya istemcinizde (FileZilla, WinSCP, Cyberduck vb.) yeni bir ba\u011flant\u0131 profili olu\u015ftururken mutlaka \u201cSFTP\u201dyi se\u00e7in; \u201cFTP over TLS\/FTPS\u201d se\u00e7ene\u011fiyle kar\u0131\u015ft\u0131rmay\u0131n.<\/p>\n<h3><span id=\"3_SSH_Anahtar_Temelli_Giris_Paylasimli_Hosting\">3. SSH Anahtar Temelli Giri\u015f (Payla\u015f\u0131ml\u0131 Hosting)<\/span><\/h3>\n<p>Payla\u015f\u0131ml\u0131 hosting\u2019te her zaman zorunlu olmasa da <strong>\u015fifre yerine SSH anahtarlar\u0131<\/strong> kullanmak b\u00fcy\u00fck g\u00fcvenlik kazan\u0131m\u0131 sa\u011flar. Genel ak\u0131\u015f \u015fu \u015fekilde:<\/p>\n<ol>\n<li>Bilgisayar\u0131n\u0131zda bir SSH anahtar \u00e7ifti olu\u015fturursunuz (\u00f6zel anahtar + a\u00e7\u0131k anahtar).<\/li>\n<li>A\u00e7\u0131k anahtar\u0131 hosting hesab\u0131n\u0131za y\u00fcklersiniz.<\/li>\n<li>SFTP istemcinizi, \u00f6zel anahtar\u0131 kullanacak \u015fekilde yap\u0131land\u0131r\u0131rs\u0131n\u0131z.<\/li>\n<\/ol>\n<p>\u00d6rnek komutlar (Linux\/macOS terminal veya Windows\u2019ta WSL\/PowerShell ile):<\/p>\n<pre class=\"language-bash line-numbers\"><code class=\"language-bash\">ssh-keygen -t ed25519 -C &quot;sftp-kullanicim&quot;<\/code><\/pre>\n<p>Bu komut, genelde <code>~\/.ssh\/<\/code> alt\u0131nda \u015fu dosyalar\u0131 \u00fcretir:<\/p>\n<ul>\n<li><code>id_ed25519<\/code> \u2192 \u00d6zel anahtar (kimseyle payla\u015fmay\u0131n)<\/li>\n<li><code>id_ed25519.pub<\/code> \u2192 A\u00e7\u0131k anahtar (sunucuya y\u00fcklenecek)<\/li>\n<\/ul>\n<p>cPanel taraf\u0131nda tipik ad\u0131mlar:<\/p>\n<ul>\n<li><strong>SSH Access<\/strong> men\u00fcs\u00fcne girin.<\/li>\n<li><strong>Import Key<\/strong> diyerek <code>.pub<\/code> dosyas\u0131n\u0131 i\u00e7eri al\u0131n.<\/li>\n<li>Gerekliyse anahtar\u0131 \u201cAuthorize\u201d ederek aktifle\u015ftirin.<\/li>\n<\/ul>\n<p>cPanel\u2019i daha derinlemesine sertle\u015ftirmek istiyorsan\u0131z, <a href=\"https:\/\/www.dchost.com\/blog\/cpanel-guvenlik-sertlestirme-kontrol-listesi\/\">cPanel g\u00fcvenlik sertle\u015ftirme kontrol listemize<\/a> mutlaka g\u00f6z at\u0131n. SFTP\/SSH eri\u015fimi de bu b\u00fct\u00fcn\u00fcn \u00f6nemli bir par\u00e7as\u0131.<\/p>\n<h3><span id=\"4_Istemci_Ayarlari_Sifre_Yerine_Anahtar\">4. \u0130stemci Ayarlar\u0131: \u015eifre Yerine Anahtar<\/span><\/h3>\n<p>\u00d6rne\u011fin FileZilla kullan\u0131yorsan\u0131z:<\/p>\n<ul>\n<li>Site Manager &gt; New Site deyin.<\/li>\n<li>Protocol: <strong>SFTP \u2013 SSH File Transfer Protocol<\/strong><\/li>\n<li>Host: alan ad\u0131n\u0131z veya sunucu ad\u0131<\/li>\n<li>Port: 22 (veya DCHost\u2019un belirtti\u011fi \u00f6zel port)<\/li>\n<li>Logon Type: <strong>Key file<\/strong> (veya benzeri bir se\u00e7enek)<\/li>\n<li>User: SFTP\/FTP kullan\u0131c\u0131 ad\u0131n\u0131z<\/li>\n<li>Key file: <code>id_ed25519<\/code> veya <code>id_rsa<\/code> dosyan\u0131z<\/li>\n<\/ul>\n<p>Art\u0131k her ba\u011flant\u0131da \u015fifre girmeniz gerekmez; istemci, \u00f6zel anahtar\u0131n\u0131zla kimlik do\u011frular. Bu hem g\u00fcvenli\u011fi art\u0131r\u0131r hem de g\u00fcnl\u00fck operasyonlar\u0131n\u0131z\u0131 h\u0131zland\u0131r\u0131r.<\/p>\n<h2><span id=\"VPS_ve_dedicated_sunucularda_SFTP_SSH_Anahtarlari\">VPS ve <a href=\"https:\/\/www.dchost.com\/tr\/fiziksel-sunucu\">dedicated sunucu<\/a>larda SFTP + SSH Anahtarlar\u0131<\/span><\/h2>\n<p>VPS veya dedicated sunucuda t\u00fcm kontrol sizdedir; bu da b\u00fcy\u00fck bir \u00f6zg\u00fcrl\u00fckle birlikte b\u00fcy\u00fck bir sorumluluk getirir. FTP sunucusunu tamamen kapatmak, sadece SFTP\u2019yi aktif tutmak ve SSH anahtar temelli giri\u015fe ge\u00e7mek en sa\u011fl\u0131kl\u0131 mimari yakla\u015f\u0131md\u0131r.<\/p>\n<p>DCHost\u2019ta kiralad\u0131\u011f\u0131n\u0131z VPS\u2019leri g\u00fcvenli hale getirmek i\u00e7in daha geni\u015f \u00e7apl\u0131 \u00f6neriler ar\u0131yorsan\u0131z, hem <a href=\"https:\/\/www.dchost.com\/blog\/vps-sunucu-guvenligi-nasil-saglanir-kapiyi-acik-birakmadan-yasamanin-sirri\/\">VPS sunucu g\u00fcvenli\u011fi rehberimizi<\/a> hem de <a href=\"https:\/\/www.dchost.com\/blog\/vpste-ssh-guvenligi-nasil-saglamlasir-fido2-anahtarlari-ssh-ca-ve-rotasyonun-sicacik-yolculugu\/\">SSH g\u00fcvenli\u011fini derinlemesine ele ald\u0131\u011f\u0131m\u0131z yaz\u0131m\u0131z\u0131<\/a> okuman\u0131z\u0131 \u00f6zellikle \u00f6neririz.<\/p>\n<h3><span id=\"1_FTP_Servisini_Kapatin\">1. FTP Servisini Kapat\u0131n<\/span><\/h3>\n<p>\u0130lk ad\u0131m, FTP\u2019yi ortadan kald\u0131rmakt\u0131r. Distro ve kullan\u0131lan FTP sunucusuna g\u00f6re de\u011fi\u015fmekle birlikte genel mant\u0131k \u015f\u00f6yle:<\/p>\n<pre class=\"language-bash line-numbers\"><code class=\"language-bash\"># \u00d6rnek: vsftpd kullan\u0131yorsan\u0131z\r\nsudo systemctl stop vsftpd\r\nsudo systemctl disable vsftpd<\/code><\/pre>\n<p>E\u011fer panel (cPanel, Plesk vb.) kullan\u0131yorsan\u0131z, panelin d\u00f6k\u00fcmantasyonuna g\u00f6re FTP hizmetini devre d\u0131\u015f\u0131 b\u0131rak\u0131n veya en az\u0131ndan sadece TLS zorunlu olacak \u015fekilde k\u0131s\u0131tlay\u0131n. Hedefiniz orta vadede tamamen SFTP\u2019ye ge\u00e7mek olmal\u0131.<\/p>\n<h3><span id=\"2_SSH_Yapilandirmasi_SFTP_Alt_Sistemi\">2. SSH Yap\u0131land\u0131rmas\u0131: SFTP Alt Sistemi<\/span><\/h3>\n<p>\u00c7o\u011fu Linux sunucuda SFTP deste\u011fi zaten SSH ile birlikte gelir. <code>\/etc\/ssh\/sshd_config<\/code> dosyas\u0131nda \u015fu sat\u0131r\u0131n yorumlu olmad\u0131\u011f\u0131ndan emin olun:<\/p>\n<pre class=\"language-bash line-numbers\"><code class=\"language-bash\">Subsystem   sftp   \/usr\/lib\/openssh\/sftp-server<\/code><\/pre>\n<p>Da\u011f\u0131t\u0131ma g\u00f6re yol de\u011fi\u015febilir, ancak genellikle varsay\u0131lan olarak do\u011fru ayarlanm\u0131\u015ft\u0131r. De\u011fi\u015fiklik yaparsan\u0131z:<\/p>\n<pre class=\"language-bash line-numbers\"><code class=\"language-bash\">sudo systemctl restart sshd<\/code><\/pre>\n<p>ile SSH servisini yeniden ba\u015flatmay\u0131 unutmay\u0131n.<\/p>\n<h3><span id=\"3_SFTP_Icin_Ayri_Kullanicilar_ve_Klasor_Izolasyonu\">3. SFTP \u0130\u00e7in Ayr\u0131 Kullan\u0131c\u0131lar ve Klas\u00f6r \u0130zolasyonu<\/span><\/h3>\n<p>\u00d6zellikle birden \u00e7ok ki\u015finin ayn\u0131 VPS\u2019e dosya atmas\u0131 gerekiyorsa, her ki\u015fiye ayr\u0131 kullan\u0131c\u0131 a\u00e7\u0131p eri\u015fimlerini belirli dizinlerle s\u0131n\u0131rlamak \u00e7ok \u00f6nemlidir.<\/p>\n<pre class=\"language-bash line-numbers\"><code class=\"language-bash\"># Yeni kullan\u0131c\u0131 ve home klas\u00f6r\u00fc\r\nsudo adduser sftpkullanici\r\n\r\n# Parola atamak isterseniz\r\nsudo passwd sftpkullanici<\/code><\/pre>\n<p>Daha s\u0131k\u0131 bir yap\u0131 i\u00e7in <code>sshd_config<\/code> i\u00e7inde \u015f\u00f6yle bir yap\u0131land\u0131rma d\u00fc\u015f\u00fcnebilirsiniz:<\/p>\n<pre class=\"language-bash line-numbers\"><code class=\"language-bash\">Match User sftpkullanici\r\n    ChrootDirectory \/var\/www\/proje\r\n    ForceCommand internal-sftp\r\n    X11Forwarding no\r\n    AllowTcpForwarding no<\/code><\/pre>\n<p>Bu yap\u0131land\u0131rma ile ilgili kullan\u0131c\u0131 yaln\u0131zca SFTP kullanabilir, terminal a\u00e7amaz ve belirtilen klas\u00f6r ile alt\u0131ndaki klas\u00f6rlere hapsedilir (chroot). \u00d6zellikle ajans veya ekip i\u00e7i eri\u015fimlerde olduk\u00e7a i\u015finize yarar.<\/p>\n<h3><span id=\"4_SSH_Anahtar_Cifti_Olusturma_VPS_Icin_Onerilen_Yol\">4. SSH Anahtar \u00c7ifti Olu\u015fturma (VPS \u0130\u00e7in \u00d6nerilen Yol)<\/span><\/h3>\n<p>VPS i\u00e7in <strong>mutlaka SSH anahtar temelli giri\u015f<\/strong> kullanman\u0131z\u0131 \u00f6neriyoruz. \u00d6rnek bir anahtar \u00fcretimi:<\/p>\n<pre class=\"language-bash line-numbers\"><code class=\"language-bash\">ssh-keygen -t ed25519 -C &quot;vps-kullanicim&quot;<\/code><\/pre>\n<p>Sonras\u0131nda anahtar\u0131n\u0131z\u0131 VPS\u2019e eklemek i\u00e7in:<\/p>\n<pre class=\"language-bash line-numbers\"><code class=\"language-bash\">ssh-copy-id -i ~\/.ssh\/id_ed25519 kullanici@sunucu-adresi<\/code><\/pre>\n<p>veya manuel olarak:<\/p>\n<ol>\n<li>Sunucuya (ge\u00e7ici olarak \u015fifreyle) ba\u011flan\u0131n.<\/li>\n<li><code>~\/.ssh\/authorized_keys<\/code> dosyas\u0131na <code>.pub<\/code> i\u00e7eri\u011fini ekleyin.<\/li>\n<\/ol>\n<p>SSH g\u00fcvenli\u011fini daha da ileri ta\u015f\u0131mak i\u00e7in \u015fifre giri\u015fini tamamen kapatabilirsiniz:<\/p>\n<pre class=\"language-bash line-numbers\"><code class=\"language-bash\"># \/etc\/ssh\/sshd_config i\u00e7inde\r\nPasswordAuthentication no\r\nPubkeyAuthentication yes<\/code><\/pre>\n<p>Bu ayar\u0131 yapmadan \u00f6nce en az bir anahtar\u0131n\u0131zla giri\u015f testini <strong>ba\u015far\u0131yla yapt\u0131\u011f\u0131n\u0131zdan emin olun<\/strong>; aksi halde kendinizi sunucudan kilitleyebilirsiniz.<\/p>\n<h3><span id=\"5_Firewall_ve_Port_Ayarlari\">5. Firewall ve Port Ayarlar\u0131<\/span><\/h3>\n<p>SFTP, SSH ile ayn\u0131 portu kulland\u0131\u011f\u0131ndan (genelde 22), firewall taraf\u0131nda bu portun a\u00e7\u0131k oldu\u011fundan emin olun:<\/p>\n<pre class=\"language-bash line-numbers\"><code class=\"language-bash\"># \u00d6rnek: ufw ile\r\nsudo ufw allow 22\/tcp\r\nsudo ufw enable<\/code><\/pre>\n<p>G\u00fcvenli\u011fi art\u0131rmak i\u00e7in SSH portunu de\u011fi\u015ftirmeyi de d\u00fc\u015f\u00fcnebilirsiniz; ancak tek ba\u015f\u0131na port de\u011fi\u015ftirmek \u00e7\u00f6z\u00fcm de\u011fildir. Ger\u00e7ek katma de\u011feri, <a href=\"https:\/\/www.dchost.com\/blog\/vps-sunucu-guvenligi-pratik-olceklenebilir-ve-dogrulanabilir-yaklasimlar\/\">VPS sunucu g\u00fcvenli\u011fi i\u00e7in \u00f6nerdi\u011fimiz b\u00fct\u00fcnc\u00fcl ad\u0131mlarla<\/a> birlikte gelir: rate limiting, Fail2ban, g\u00fcvenlik duvar\u0131 kurallar\u0131, d\u00fczenli g\u00fcncellemeler vb.<\/p>\n<h2><span id=\"Guvenli_Dosya_Transferi_Icin_Pratik_Senaryolar\">G\u00fcvenli Dosya Transferi \u0130\u00e7in Pratik Senaryolar<\/span><\/h2>\n<h3><span id=\"1_Ajans_Birden_Fazla_Musteri_Sitesi_Yoneten_Ekip\">1. Ajans: Birden Fazla M\u00fc\u015fteri Sitesi Y\u00f6neten Ekip<\/span><\/h3>\n<p>Senaryo: Ajans\u0131n\u0131zda onlarca m\u00fc\u015fteri sitesi var, hepsi DCHost \u00fczerindeki payla\u015f\u0131ml\u0131 hosting veya VPS\u2019lerde bar\u0131n\u0131yor. Farkl\u0131 geli\u015ftiriciler, tasar\u0131mc\u0131lar ve proje y\u00f6neticileri zaman zaman dosya atmak zorunda.<\/p>\n<p>\u00d6nerilen yap\u0131:<\/p>\n<ul>\n<li>Her m\u00fc\u015fteri i\u00e7in ayr\u0131 SFTP hesab\u0131 veya ayr\u0131 kullan\u0131c\u0131 (VPS ise).<\/li>\n<li>Ortak bir \u201croot eri\u015fimi\u201d hesab\u0131 yerine, kim ne zaman ba\u011flanm\u0131\u015f takip edilebilir bireysel hesaplar.<\/li>\n<li>\u015eifre yerine SSH anahtarlar\u0131, \u00f6zellikle ajans \u00e7al\u0131\u015fanlar\u0131 de\u011fi\u015ftik\u00e7e y\u00f6netimi \u00e7ok kolayla\u015ft\u0131r\u0131r.<\/li>\n<li>Eski FTP bilgilerini dok\u00fcmanlardan temizleyip sadece SFTP ayr\u0131nt\u0131lar\u0131n\u0131 payla\u015f\u0131n.<\/li>\n<\/ul>\n<h3><span id=\"2_ETicaret_Sitesi_Canli_Ortam_Staging_Ortami\">2. E\u2011Ticaret Sitesi: Canl\u0131 Ortam + Staging Ortam\u0131<\/span><\/h3>\n<p>Senaryo: Bir e\u2011ticaret siteniz var, canl\u0131 ortam DCHost VPS \u00fczerinde, staging (deneme) ortam\u0131 ise ayr\u0131 bir alt alan ad\u0131 ve klas\u00f6rde.<\/p>\n<p>\u00d6nerilen yap\u0131:<\/p>\n<ul>\n<li>Canl\u0131 ortam i\u00e7in sadece 1\u20112 yetkili SFTP hesab\u0131.<\/li>\n<li>Staging i\u00e7in ayr\u0131 kullan\u0131c\u0131, ayr\u0131 SFTP hesab\u0131; canl\u0131ya g\u00f6re daha esnek ama yine de kontroll\u00fc.<\/li>\n<li>Otomatik deploy kullanan CI\/CD sistemleri i\u00e7in ayr\u0131 SSH anahtar \u00e7ifti; bu anahtar\u0131 ki\u015fisel anahtarlar\u0131n\u0131zla kar\u0131\u015ft\u0131rmay\u0131n.<\/li>\n<li>Dosya transferini minimumda tutup, m\u00fcmk\u00fcn oldu\u011funca Git tabanl\u0131 da\u011f\u0131t\u0131ma ge\u00e7in (bu konuda <a href=\"https:\/\/www.dchost.com\/blog\/git-ile-otomatik-deploy-cpanel-plesk-ve-vpste-adim-adim-kurulum\/\">Git ile otomatik deploy rehberimiz<\/a> size iyi bir ba\u015flang\u0131\u00e7 sunar).<\/li>\n<\/ul>\n<h3><span id=\"3_Gelistirici_Takimi_Ortak_VPS_Uzerinde_Calisan_Birden_Fazla_Kisi\">3. Geli\u015ftirici Tak\u0131m\u0131: Ortak VPS \u00dczerinde \u00c7al\u0131\u015fan Birden Fazla Ki\u015fi<\/span><\/h3>\n<p>Senaryo: Backend, frontend ve DevOps\u2019tan olu\u015fan k\u00fc\u00e7\u00fck bir ekip, tek bir g\u00fc\u00e7l\u00fc VPS \u00fczerinde birden \u00e7ok servis \u00e7al\u0131\u015ft\u0131r\u0131yor. Herkesin SFTP\/SSH eri\u015fimi var.<\/p>\n<p>\u00d6nerilen yap\u0131:<\/p>\n<ul>\n<li>Her geli\u015ftirici i\u00e7in ayr\u0131 Linux kullan\u0131c\u0131s\u0131 ve ayr\u0131 SSH anahtar \u00e7ifti.<\/li>\n<li>Grup y\u00f6netimi ile dosya izinlerini d\u00fczenleyin (\u00f6r. <code>www-data<\/code> grubu).<\/li>\n<li><code>authorized_keys<\/code> i\u00e7ine k\u0131s\u0131tlay\u0131c\u0131 komutlar (command=) veya <code>Match User<\/code> bloklar\u0131 ile yetkileri s\u0131n\u0131rlamay\u0131 d\u00fc\u015f\u00fcnebilirsiniz.<\/li>\n<li>Ekipten ayr\u0131lan birinin eri\u015fimini kald\u0131rmak i\u00e7in ilgili kullan\u0131c\u0131n\u0131n hesab\u0131n\u0131 veya sadece anahtarlar\u0131n\u0131 devre d\u0131\u015f\u0131 b\u0131rakman\u0131z yeterli olur; parolalar\u0131 t\u00fcm ekiple yeniden payla\u015fmak zorunda kalmazs\u0131n\u0131z.<\/li>\n<\/ul>\n<h2><span id=\"SFTP_ve_FTPS_Guvenligini_Tamamlayan_Diger_Katmanlar\">SFTP ve FTPS G\u00fcvenli\u011fini Tamamlayan Di\u011fer Katmanlar<\/span><\/h2>\n<h3><span id=\"1_SSLTLS_Katmanini_Guncel_Tutmak\">1. SSL\/TLS Katman\u0131n\u0131 G\u00fcncel Tutmak<\/span><\/h3>\n<p>E\u011fer FTPS kullanmak zorundaysan\u0131z veya web trafi\u011finiz HTTPS \u00fczerinden ak\u0131yorsa, SSL\/TLS protokol\u00fcn\u00fcn g\u00fcncel ve g\u00fc\u00e7l\u00fc \u015fifre k\u00fcmeleriyle ayarland\u0131\u011f\u0131ndan emin olmal\u0131s\u0131n\u0131z. Bu, hem FTPS oturumlar\u0131n\u0131z hem de web trafi\u011finiz i\u00e7in kritik.<\/p>\n<p>Bu konuda kapsaml\u0131 bir perspektif kazanmak i\u00e7in, <a href=\"https:\/\/www.dchost.com\/blog\/ssl-tls-protokol-guncellemeleri-modern-https-icin-net-yol-haritasi\/\">SSL\/TLS protokol g\u00fcncellemeleri rehberimize<\/a> g\u00f6z atarak hangi protokolleri kapatman\u0131z, hangilerini desteklemeniz gerekti\u011fini \u00f6\u011frenebilirsiniz.<\/p>\n<h3><span id=\"2_Guvenli_Parola_Politikalari_ve_2FA\">2. G\u00fcvenli Parola Politikalar\u0131 ve 2FA<\/span><\/h3>\n<p>SFTP\u2019yi anahtarla kullan\u0131yor olsan\u0131z bile, panel giri\u015flerinizde g\u00fc\u00e7l\u00fc parola ve m\u00fcmk\u00fcnse 2FA (iki fakt\u00f6rl\u00fc kimlik do\u011frulama) kullanman\u0131z gerekir. \u00c7\u00fcnk\u00fc:<\/p>\n<ul>\n<li>Bir sald\u0131rgan panelinize girerse, yeni SFTP hesaplar\u0131 yaratabilir.<\/li>\n<li>Kullan\u0131c\u0131 \u015fifrelerinizi de\u011fi\u015ftirebilir, FTP\/SFTP yap\u0131land\u0131rmalar\u0131n\u0131 kurcalayabilir.<\/li>\n<\/ul>\n<p>Bu nedenle dosya transferi kadar panel eri\u015fiminizi de g\u00fcvenli hale getirmek zorundas\u0131n\u0131z.<\/p>\n<h3><span id=\"3_Loglama_ve_Izleme\">3. Loglama ve \u0130zleme<\/span><\/h3>\n<p>SFTP ve SSH oturumlar\u0131n\u0131n loglar\u0131, hem adli analiz hem de g\u00fcnl\u00fck operasyonlar i\u00e7in b\u00fcy\u00fck de\u011fere sahiptir:<\/p>\n<ul>\n<li>Kim, ne zaman ba\u011fland\u0131?<\/li>\n<li>Hangi IP\u2019lerden ba\u015far\u0131s\u0131z giri\u015f denemeleri geldi?<\/li>\n<li>Olas\u0131 brute-force sald\u0131r\u0131lar\u0131 ne kadar yo\u011fun?<\/li>\n<\/ul>\n<p>VPS taraf\u0131nda merkezi loglama ve izleme kurmak istiyorsan\u0131z; Grafana, Loki, Promtail gibi ara\u00e7larla <strong>VPS log y\u00f6netimi<\/strong>ni ele ald\u0131\u011f\u0131m\u0131z yaz\u0131m\u0131z size yol g\u00f6sterecektir. DCHost altyap\u0131s\u0131nda bu tarz \u00e7\u00f6z\u00fcmleri konumland\u0131rmak olduk\u00e7a esnektir.<\/p>\n<h2><span id=\"DCHost_Altyapisinda_FTPden_SFTPye_Gecis_Icin_Yol_Haritasi\">DCHost Altyap\u0131s\u0131nda FTP\u2019den SFTP\u2019ye Ge\u00e7i\u015f \u0130\u00e7in Yol Haritas\u0131<\/span><\/h2>\n<h3><span id=\"1_Envanter_Cikartin\">1. Envanter \u00c7\u0131kart\u0131n<\/span><\/h3>\n<p>\u0130lk ad\u0131m, nerelerde FTP kullan\u0131ld\u0131\u011f\u0131n\u0131 tespit etmektir:<\/p>\n<ul>\n<li>Hangi siteler hala FTP ile deploy ediliyor?<\/li>\n<li>Hangi masa\u00fcst\u00fc istemcilerde sadece FTP profili tan\u0131ml\u0131?<\/li>\n<li>Eski entegrasyonlar veya script\u2019ler FTP\u2019ye ba\u011f\u0131ml\u0131 m\u0131?<\/li>\n<\/ul>\n<p>K\u00fc\u00e7\u00fck bir Excel\/Google Sheet tablosu a\u00e7\u0131p siteleri, eri\u015fim y\u00f6ntemlerini ve sorumlular\u0131 listelemek \u00e7ok i\u015fe yarar.<\/p>\n<h3><span id=\"2_Paylasimli_Hostingte_SFTPyi_Aktif_Hale_Getirin\">2. Payla\u015f\u0131ml\u0131 Hosting\u2019te SFTP\u2019yi Aktif Hale Getirin<\/span><\/h3>\n<ul>\n<li>DCHost m\u00fc\u015fteri panelinden veya destek ekibimiz \u00fczerinden hesab\u0131n\u0131z i\u00e7in SFTP\/SSH durumunu kontrol edin.<\/li>\n<li>Her site i\u00e7in FTP yerine SFTP profili olu\u015fturun.<\/li>\n<li>M\u00fcmk\u00fcnse SSH anahtarlar\u0131na ge\u00e7ip parolal\u0131 eri\u015fimi ikincil hale getirin.<\/li>\n<\/ul>\n<h3><span id=\"3_VPSDedicated_Sunucuda_FTPyi_Kapatin\">3. VPS\/Dedicated Sunucuda FTP\u2019yi Kapat\u0131n<\/span><\/h3>\n<ul>\n<li>FTP servislerini devre d\u0131\u015f\u0131 b\u0131rak\u0131n (vsftpd, proftpd vb.).<\/li>\n<li>SSH\/SFTP yap\u0131land\u0131rmas\u0131n\u0131 g\u00f6zden ge\u00e7irin, anahtar temelli giri\u015fe ge\u00e7in.<\/li>\n<li>Gerekirse <code>sshd_config<\/code> i\u00e7inde SFTP\u2019ye \u00f6zel kullan\u0131c\u0131 k\u0131s\u0131tlamalar\u0131 tan\u0131mlay\u0131n.<\/li>\n<\/ul>\n<h3><span id=\"4_Ekip_ve_Ajanslarla_Iletisimi_Yonetin\">4. Ekip ve Ajanslarla \u0130leti\u015fimi Y\u00f6netin<\/span><\/h3>\n<p>Bu tarz ge\u00e7i\u015flerin en s\u0131k aksayan noktas\u0131, ileti\u015fim eksikli\u011fidir. \u015eu ad\u0131mlar\u0131 atman\u0131z i\u015finizi \u00e7ok kolayla\u015ft\u0131r\u0131r:<\/p>\n<ul>\n<li>T\u00fcm payda\u015flara (ajanslar, freelance geli\u015ftiriciler, i\u00e7erik y\u00f6neticileri) k\u0131sa bir e\u2011posta g\u00f6nderip FTP\u2019nin kapanaca\u011f\u0131n\u0131 ve SFTP\u2019ye ge\u00e7ilece\u011fini duyurun.<\/li>\n<li>S\u0131k kullan\u0131lan istemciler (FileZilla vb.) i\u00e7in ekran g\u00f6r\u00fcnt\u00fcl\u00fc k\u00fc\u00e7\u00fck bir rehber haz\u0131rlay\u0131n.<\/li>\n<li>Eski FTP \u015fifre ve ba\u011flant\u0131lar\u0131n\u0131 i\u00e7eren dok\u00fcmanlar\u0131 g\u00fcncelleyin veya devre d\u0131\u015f\u0131 b\u0131rak\u0131n.<\/li>\n<\/ul>\n<h3><span id=\"5_Test_Dogrulama_ve_Izleme\">5. Test, Do\u011frulama ve \u0130zleme<\/span><\/h3>\n<ul>\n<li>Her site i\u00e7in SFTP ile ba\u011flan\u0131p upload\/download testi yap\u0131n.<\/li>\n<li>Eski FTP portunu (21) firewall\u2019da kapatmadan \u00f6nce birka\u00e7 g\u00fcn boyunca loglar\u0131 kontrol edin; hala ba\u011flanmaya \u00e7al\u0131\u015fan istemci kalm\u0131\u015f m\u0131 bak\u0131n.<\/li>\n<li>FTP portunu kapatt\u0131ktan sonra beklenmeyen bir \u015fikayet gelirse, hangi istemcinin unutuldu\u011funu h\u0131zl\u0131ca tespit edebilirsiniz.<\/li>\n<\/ul>\n<h2><span id=\"Kisa_Ozet_ve_Son_Tavsiyeler\">K\u0131sa \u00d6zet ve Son Tavsiyeler<\/span><\/h2>\n<p>FTP\u2019den SFTP\u2019ye ge\u00e7i\u015f, ka\u011f\u0131t \u00fczerinde basit bir ayar de\u011fi\u015fikli\u011fi gibi g\u00f6r\u00fcnse de pratikte <strong>i\u015f s\u00fcre\u00e7leriniz, ekip al\u0131\u015fkanl\u0131klar\u0131n\u0131z ve g\u00fcvenlik duru\u015funuz<\/strong> \u00fczerinde ciddi etkisi olan bir karard\u0131r. Payla\u015f\u0131ml\u0131 hosting taraf\u0131nda genellikle birka\u00e7 t\u0131klama ve istemci ayar\u0131yla bu d\u00f6n\u00fc\u015f\u00fcm\u00fc tamamlamak m\u00fcmk\u00fcnken; VPS ve dedicated sunucularda daha kapsaml\u0131 bir plan yapman\u0131z gerekir.<\/p>\n<p>DCHost olarak biz, yeni projelerde FTP\u2019yi hi\u00e7 devreye almadan do\u011frudan SFTP\/SSH anahtarlar\u0131yla ba\u015flaman\u0131z\u0131; eski projelerde ise en k\u0131sa s\u00fcrede ad\u0131m ad\u0131m SFTP\u2019ye ge\u00e7i\u015f planlaman\u0131z\u0131 \u00f6neriyoruz. Bu sayede:<\/p>\n<ul>\n<li>\u015eifre h\u0131rs\u0131zl\u0131\u011f\u0131 ve a\u011f dinleme risklerini ciddi \u00f6l\u00e7\u00fcde azalt\u0131rs\u0131n\u0131z.<\/li>\n<li>Kim, ne zaman eri\u015fti sorular\u0131na net cevaplar verebilirsiniz.<\/li>\n<li>\u0130leride zorunlu olacak uyumluluk (KVKK, GDPR, kurumsal g\u00fcvenlik standartlar\u0131 vb.) gereksinimlerine daha haz\u0131r olursunuz.<\/li>\n<\/ul>\n<p>Mevcut payla\u015f\u0131ml\u0131 hosting veya VPS altyap\u0131n\u0131z\u0131 SFTP\/SSH temelli hale getirmek, gerekirse FTP\u2019yi tamamen kapatmak i\u00e7in DCHost ekibiyle her zaman birlikte \u00e7al\u0131\u015fabilirsiniz. Altyap\u0131n\u0131z\u0131 g\u00f6zden ge\u00e7irmek, g\u00fcvenli dosya transferi stratejinizi netle\u015ftirmek ve buna uygun hosting veya VPS se\u00e7eneklerini de\u011ferlendirmek isterseniz, bir bilet a\u00e7man\u0131z yeterli; sahadaki ger\u00e7ek tecr\u00fcbelerle \u015fekillenmi\u015f \u00f6nerilerimizi sizin projelerinize uyarlayarak payla\u015fmaktan memnuniyet duyar\u0131z.<\/p>\n<p>&#8220;,<br \/>\n  &#8220;focus_keyword&#8221;: &#8220;FTP\u2019den SFTP\u2019ye ge\u00e7i\u015f&#8221;,<br \/>\n  &#8220;meta_description&#8221;: &#8220;FTP\u2019den SFTP\u2019ye ge\u00e7i\u015fte payla\u015f\u0131ml\u0131 hosting ve VPS\u2019te g\u00fcvenli dosya transferi, FTPS ve SSH anahtar y\u00f6netimi i\u00e7in pratik, ad\u0131m ad\u0131m teknik rehber.&#8221;,<br \/>\n  &#8220;faqs&#8221;: [<br \/>\n    {<br \/>\n      &#8220;question&#8221;: &#8220;FTP yerine SFTP kullanmak ger\u00e7ekten zorunlu mu?&#8221;,<br \/>\n      &#8220;answer&#8221;: &#8220;Teknik olarak FTP\u2019yi bug\u00fcn h\u00e2l\u00e2 kullanabilirsiniz; ancak g\u00fcvenlik a\u00e7\u0131s\u0131ndan bak\u0131ld\u0131\u011f\u0131nda FTP\u2019yi \u00fcretim ortam\u0131nda tutmak art\u0131k makul bir tercih de\u011fil. FTP t\u00fcm trafi\u011fi \u015fifrelenmemi\u015f iletti\u011fi i\u00e7in, zay\u0131f Wi\u2011Fi a\u011flar\u0131 veya ortak ofis a\u011flar\u0131nda kullan\u0131c\u0131 ad\u0131n\u0131z, \u015fifreniz ve dosyalar\u0131n\u0131z kolayca ele ge\u00e7irilebilir. Ayr\u0131ca sunucu kimli\u011fi do\u011frulamas\u0131 olmad\u0131\u011f\u0131 i\u00e7in ortadaki adam (MITM) sald\u0131r\u0131lar\u0131 da daha olas\u0131d\u0131r. SFTP ise SSH \u00fczerinden \u00e7al\u0131\u015fan, trafi\u011fi u\u00e7tan uca \u015fifreleyen, anahtar temelli giri\u015fe izin veren modern bir protokol. Mevcut sistemlerinizde k\u0131sa vadede hepsini de\u011fi\u015ftiremiyorsan\u0131z bile, yeni projelerde do\u011frudan SFTP ile ba\u015flaman\u0131z ve FTP\u2019yi a\u015famal\u0131 \u015fekilde devreden \u00e7\u0131karman\u0131z g\u00fcvenlik a\u00e7\u0131s\u0131ndan \u00e7ok daha sa\u011fl\u0131kl\u0131 bir yakla\u015f\u0131md\u0131r.&#8221;<br \/>\n    },<br \/>\n    {<br \/>\n      &#8220;question&#8221;: &#8220;SFTP mi FTPS mi tercih etmeliyim?&#8221;,<br \/>\n      &#8220;answer&#8221;: &#8220;SFTP ve FTPS temelde ayn\u0131 problemi \u00e7\u00f6zer: dosya transferini \u015fifrelemek. Ancak uygulama bi\u00e7imleri ve i\u015fletme maliyetleri farkl\u0131d\u0131r. SFTP, SSH \u00fczerinde \u00e7al\u0131\u015fan tek portlu, firewall y\u00f6netimi basit ve SSH anahtarlar\u0131yla \u00e7ok rahat entegre olan bir yap\u0131ya sahiptir. FTPS ise klasik FTP\u2019nin SSL\/TLS ile sar\u0131lm\u0131\u015f halidir; sertifika y\u00f6netimi gerektirir, aktif\/pasif mod gibi detaylar y\u00fcz\u00fcnden NAT ve firewall arkas\u0131nda daha karma\u015f\u0131k olabilir. Yeni web projeleri, payla\u015f\u0131ml\u0131 hosting ve VPS senaryolar\u0131nda genellikle SFTP \u00e7ok daha pratik ve g\u00fcvenli varsay\u0131lan se\u00e7imdir. Sadece baz\u0131 eski kurumsal yaz\u0131l\u0131mlar FTP\/FTPS\u2019e kilitliyse FTPS kullanmak zorunda kalabilirsiniz; o durumda mutlaka TLS\u2019i zorunlu hale getirip d\u00fcz FTP eri\u015fimini kapatmal\u0131s\u0131n\u0131z.&#8221;<br \/>\n    },<br \/>\n    {<br \/>\n      &#8220;question&#8221;: &#8220;SSH anahtarlar\u0131m\u0131 kaybedersem ne olur, sunucuya giremez miyim?&#8221;,<br \/>\n      &#8220;answer&#8221;: &#8220;E\u011fer sunucuya eri\u015fimi sadece SSH anahtarlar\u0131na indirdiyseniz ve parolal\u0131 giri\u015fi kapatt\u0131ysan\u0131z, \u00f6zel anahtar\u0131n\u0131z\u0131 kaybetmeniz durumunda o anahtarla giri\u015f yapamazs\u0131n\u0131z. Bu nedenle birka\u00e7 \u00f6nlem almak \u00f6nemlidir: Birincisi, kritik sunucular i\u00e7in en az iki ayr\u0131 y\u00f6netici hesab\u0131 veya iki farkl\u0131 anahtar \u00e7ifti tan\u0131mlay\u0131n; b\u00f6ylece tek bir anahtar kayb\u0131nda tamamen kilitlenmezsiniz. \u0130kincisi, \u00f6zel anahtarlar\u0131n\u0131z\u0131 \u015fifreli (passphrase\u2019li) tutun ve g\u00fcvenli bir parola y\u00f6neticisinde veya \u015fifreli yedeklerde saklay\u0131n. \u00dc\u00e7\u00fcnc\u00fcs\u00fc, bulut panel veya KVM konsol gibi d\u0131\u015f eri\u015fim imkanlar\u0131n\u0131z varsa, acil durumlarda yeni bir anahtar ekleyebilecek yedek bir yol b\u0131rak\u0131n. DCHost gibi sa\u011flay\u0131c\u0131lar\u0131n sundu\u011fu konsol eri\u015fimi, b\u00f6yle durumlarda hayat kurtar\u0131c\u0131 olur.&#8221;<br \/>\n    },<br \/>\n    {<br \/>\n      &#8220;question&#8221;: &#8220;Payla\u015f\u0131ml\u0131 hosting hesab\u0131mda SSH anahtar\u0131 kullanabilir miyim?&#8221;,<br \/>\n      &#8220;answer&#8221;: &#8220;Evet, \u00e7o\u011fu modern payla\u015f\u0131ml\u0131 hosting altyap\u0131s\u0131nda SSH\/SFTP i\u00e7in anahtar temelli kimlik do\u011frulama desteklenir; ancak bu yetkinin paket tipine veya g\u00fcvenlik politikas\u0131na g\u00f6re hesab\u0131n\u0131z \u00f6zelinde a\u00e7\u0131lmas\u0131 gerekebilir. cPanel veya benzeri panelinizde \u201cSSH Access\u201d, \u201cSSH Keys\u201d gibi men\u00fcler varsa, genellikle yerel bilgisayar\u0131n\u0131zda olu\u015fturdu\u011funuz a\u00e7\u0131k anahtar\u0131 panele y\u00fckleyerek anahtar temelli giri\u015f sa\u011flayabilirsiniz. Bu sayede her ba\u011flant\u0131da parola girmek zorunda kalmaz, kaba kuvvet sald\u0131r\u0131lar\u0131na kar\u015f\u0131 da daha dayan\u0131kl\u0131 bir yap\u0131ya ge\u00e7mi\u015f olursunuz. Emin de\u011filseniz DCHost destek ekibine hesab\u0131n\u0131z i\u00e7in SSH\/SFTP anahtar deste\u011finin durumu hakk\u0131nda sorabilir, gerekirse a\u00e7\u0131lmas\u0131n\u0131 talep edebilirsiniz.&#8221;<br \/>\n    }<br \/>\n  ]<br \/>\n}<\/p>\n<\/div>","protected":false},"excerpt":{"rendered":"<p>{ &#8220;title&#8221;: &#8220;FTP\u2019den SFTP\u2019ye Ge\u00e7i\u015f: payla\u015f\u0131ml\u0131 hosting ve VPS\u2019te G\u00fcvenli Dosya Transferi&#8221;, &#8220;content&#8221;: &#8220; Dosya transferi, bir web sitesinin veya uygulaman\u0131n en temel ama \u00e7o\u011fu zaman en hafife al\u0131nan s\u00fcre\u00e7lerinden biri. Proje planlama toplant\u0131lar\u0131nda performans, \u00f6l\u00e7eklenebilirlik, SEO gibi ba\u015fl\u0131klara uzun uzun vakit ayr\u0131l\u0131rken; FTP ile sunucuya dosya atmak genellikle kimsenin tart\u0131\u015fmad\u0131\u011f\u0131, \u201czaten \u00e7al\u0131\u015f\u0131yor\u201d kabul edilen [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":3111,"comment_status":"","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-3110","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-teknoloji"],"_links":{"self":[{"href":"https:\/\/www.dchost.com\/blog\/wp-json\/wp\/v2\/posts\/3110","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.dchost.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.dchost.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.dchost.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.dchost.com\/blog\/wp-json\/wp\/v2\/comments?post=3110"}],"version-history":[{"count":0,"href":"https:\/\/www.dchost.com\/blog\/wp-json\/wp\/v2\/posts\/3110\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.dchost.com\/blog\/wp-json\/wp\/v2\/media\/3111"}],"wp:attachment":[{"href":"https:\/\/www.dchost.com\/blog\/wp-json\/wp\/v2\/media?parent=3110"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.dchost.com\/blog\/wp-json\/wp\/v2\/categories?post=3110"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.dchost.com\/blog\/wp-json\/wp\/v2\/tags?post=3110"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}