securing communication channel (FTP) - Need Suggestions

From: Vicky Rode (aptgetd_at_gmail.com)
Date: 06/27/05

  • Next message: JJ Knitis: "RE: Nmap oprions" 
    Date: Mon, 27 Jun 2005 13:18:15 -0700
To: security-basics@securityfocus.com

    Hi,

    I'm looking at ways trying to secure communication channel (file
    transfer to be specific) which occurs between my master (ftp
    downloads)/slave (remote clients) FTP servers. Since this communication
    channel is in the clear which means anyone listening can acquire the
    login credentials. Not to mention man-in-the middle attack.

    I'm currently pondering using one of the following options and was
    wondering if anyone could provide their thoughts and feedback (pros/cons):

    (1) Secure FTP (SSL:FTPS)

    - Any pitfalls I need to be aware of from a setup/implementation standpoint?
    - How would the authentication to MySQL user database work?

    (2) Secure HTTP (https)

    - Any pitfalls I need to be aware of from a setup/implementation standpoint?
    - How would the authentication to MySQL user database work?

    (3) a. Scp:
           b. Sftp: Is it an interactive program? Does it provide
    non-interactive authentication?

    Any pointers will be greatly appreciated.

    regards,
    /vicky

  • Next message: JJ Knitis: "RE: Nmap oprions"

    Relevant Pages

    • Re: FTP weakness in IIS
      ... > Keep in mind that usernames and passwords transmitted when authentication ... > only connetions are significantly more secure. ... Or will Secure FTP ...
      (microsoft.public.inetserver.iis.security)
    • RE: FTP Server
      ... The biggest issue being that if you have to pass authentication ... The real reason ftp still exists is anonymous file access. ... >> Despite Jason's rather narrow minded view of what constitutes a secure ...
      (Fedora)
    • Re: How many CALs do I need?
      ... > FTP Server: Box will have FTP. ... > 1 login name and password that everyone would share. ... > Secure Web Pages: Our website will have a 'secure' section that you must ... > logging in at any given time, but it will all be under the same account ...
      (microsoft.public.windows.server.sbs)
    • How many CALs do I need?
      ... FTP Server: Box will have FTP. ... login name and password that everyone would share. ... Secure Web Pages: Our website will have a 'secure' section that you must ... logging in at any given time, but it will all be under the same account ...
      (microsoft.public.windows.server.sbs)
    • RE: [OT] M$ collaborates with Suse
      ... Most hosting facilities do allow FrontPage and/or FTP access...FrontPage ... Remote Administration to an actual server can be done with a Terminal ... Secure Administration on the inside can be done with Scripting. ... decent free SSH Servers out there for Windows and I like freeSSHd. ...
      (Debian-User)