Thanks. That fits with what I already knew. Based both my own experience and yours regarding using SFTP over FTPS, it makes me wonder why whenever there's a request for FTP servers recommendation thread that it only includes servers that use FTPS.
Do most people just not use the security? I haven't seen many private vendors requiring either FTPS or SFTP whereas here it's policy. I've been looking for an easy to administer server for home, but I want secured transfers so this interest isn't just academic. --- Kevin Graeme Cooperative Extension Technology Services University of Wisconsin-Extension > -----Original Message----- > From: Damien McKenna [mailto:[EMAIL PROTECTED] > Sent: Tuesday, October 11, 2005 10:46 AM > To: CF-Talk > Subject: RE: FTPS? (was RE: SFTP?) > > FTPS is a file transport layer on top of SSL or TLS. There > are number of options available with it and this can cause > problems: SSL v2 or v3 or TLS, implicit connection, passive > transfers, etc. In my experience it can be quite tricky to > get the options all working correctly on both the server and > client if you have a firewall or two in the middle, I spent > quite some time this past summer trying to get a series of > servers working and ultimately gave up. One of the problems > that I see with FTPS is that there are several fall-back > options usually available (sometimes required) which drop > communications back to an unsecured channel, which defeats > the purpose. > > SFTP is a file transport layer on top of SSH, a protocol for > creating secure shell logins. It is IMHO the most secure way > of doing transfers and is easiest to use from a network > management point of view because it all runs on one port > (#22) and there are no "drop back to unsecured transfers" > capabilities. > > Whether my experiences with FTPS were actual problems or just > my lack of knowledge I can't say, I just got frustrated after > trying several server-client combinations and gave up in > favor of SSH which was pretty much install-and-go. > > FYI there are both free SSH servers (OpenSSH on > UNIX/Linux/BSD/MacOSX and FreeSSHd on Windows) and clients > (oodles on UNIX, CoreFTP on > Windows) available. > > -- > Damien McKenna - Web Developer - > [EMAIL PROTECTED] The Limu Company - > http://www.thelimucompany.com/ - 407-804-1014 #include <stdjoke.h> > > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Logware (www.logware.us): a new and convenient web-based time tracking application. Start tracking and documenting hours spent on a project or with a client with Logware today. Try it for free with a 15 day trial account. http://www.houseoffusion.com/banners/view.cfm?bannerid=67 Message: http://www.houseoffusion.com/lists.cfm/link=i:4:220797 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
