Re: Looking for ftp over SSL (TLS) daemon...

From: James Lick (jlick@drivel.com)
Date: 04/17/02 

Date: Thu, 18 Apr 2002 01:48:55 +0800 (CST)
From: James Lick <jlick@drivel.com>
To: "Jonathan G. Lampe" <jonathan@stdnet.com>

On Fri, 12 Apr 2002, Jonathan G. Lampe wrote:
> I am trying to find an FTP server daemon which uses SSL (TLS) in a Sun
> environment. (Not SSH.) Does anyone know of such a thing? (Vendors
> welcome to reply!!!)

If that's a hard requirement, look into SSLftp which is available from:

ftp://ftp.psy.uq.oz.au/pub/Crypto/SSLapps/

This is from the old SSLeay (now OpenSSL) archives. Keep in mind that
most of the client tools there are getting a bit crusty at this point, and
I don't believe anyone is working on them anymore. That means it is very
likely that these contain some of the security holes later patched in the
mainstream versions of ftp and telnet those tools are based on. You'd be
better off running unencrypted sessions than have services with security
vulnerabilities. Also you'll have a hard time finding non-Unix clients
for those tools that actually work well.

Given that, I'd highly recommend you use an SSH based solution instead.
SSH has gained tremendous market acceptance, with servers and clients
available for a wide variety of systems, and both freeware and supported
commercial varieties available. It is also a standardized protocol, and
the popular implementations are being actively maintained. Most
implementations come with file transfer capabilities (scp) as well. If
you insist on using ftp, you could use passive ftp over a port-forwarded
ssh tunnel. In any case, I think you'd be much happier with an SSH
solution.

---- James Lick ---- jlick@drivel.com ---- http://drivel.com/ ----

Relevant Pages

  • Re: Windows GUI scp client
    ... > I want to allow relatively naive users from Windows clients to upload ... > the simple GUI ftp clients. ... much of the point of using ssh rather than ftp would be ...
    (comp.security.ssh)
  • RE: FTPD & SSHD server
    ... I think you are confused about difference between ssh and FTPD. ... This FTP software gives FTP protocol ... not used over the public internet. ... high port number for data channel in passive mode. ...
    (freebsd-questions)
  • Re: Secure file transfer
    ... We're talking about SFTP, which is a variant how to use SSH to secure the ... FTP protocol. ... is it better to use AUTH SSL or SSH/SFTP?" ...
    (comp.security.misc)
  • Windows GUI scp client
    ... I want to allow relatively naive users from Windows clients to upload ... the simple GUI ftp clients. ... much of the point of using ssh rather than ftp would be ...
    (comp.security.ssh)
  • Re: Secure file transfer
    ... We're talking about SFTP, which is a variant how to use SSH to secure the ... FTP protocol. ... "FTP over SSH" is the protection of the command channel. ...
    (comp.security.misc)