× The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.


  1.  Home
  2. MIDRANGE-L
  3. September 2010

Re: FTP-S

On Fri, Sep 3, 2010 at 05:17, jmmckee <jmmckee@xxxxxxxxxxxxxx> wrote:
Below is the rationale for dropping sFTP. ÂDoes this make sense?

To some extent.

I get the impression that the manager believes sFTP (and ssh) is not secure. ÂOr, that ssh (and sFTP) are not as good as FTP/S.

They were using SSH with real system users - and switched over to
FTP-S with virtual users (users without a system account).

"The system supports FTPS, which is a tightening of security as it prevents excessive SSH accounts that can make the server more vulnerable. "

Of course, in the end this is bullshit - yes, the switch from system
users to virtual users tightens security, but then again there is no
real need to switch the protocol for this - you could easily provide
SSH access with virtual users.

From a protocol perspective, both FTP-S and sFTP are secure.

In other words, they're just lazy.


As an Amazon Associate we earn from qualifying purchases.

This thread ...
Replies:
Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.