Re: securing communication channel (FTP) - Need Suggestions

From: Ansgar -59cobalt- Wiechers (bugtraq_at_planetcobalt.net)
Date: 06/28/05

  • Next message: mickael kael: "BlackBox testing for SQL injection" 
    Date: Tue, 28 Jun 2005 11:51:01 +0200
To: security-basics@securityfocus.com

    On 2005-06-27 Vicky Rode wrote:
    > (3) a. Scp:
    > b. Sftp: Is it an interactive program? Does it provide
    > non-interactive authentication?

    Scp isn't, sftp is. Both allow for non-interactive authentication.

    Regards
    Ansgar Wiechers 

    -- 
"All vulnerabilities deserve a public fear period prior to patches
becoming available."
--Jason Coombs on Bugtraq
  • Next message: mickael kael: "BlackBox testing for SQL injection"

    Relevant Pages

    • RE: sftp exit codes?
      ... thanks to everyone who replied with a tip or suggestion. ... Subject: sftp exit codes? ... I am using scp along with BatchMode on command line. ...
      (SSH)
    • Re: Does OpenSSH use RCP?
      ... > with someone about the difference between OpenSSH and SFTP. ... > SFTP) than SCP will fail. ... OpenSSH uses an implementation that is compatible to the original SSH ...
      (comp.security.unix)
    • Re: SFTP and SCP
      ... > Both scp and sftp use insecure protocols which derive their security from ... In what way do you see sftp as having "improved ... with wildcard expansion. ... matching rules chosen by the server. ...
      (comp.security.ssh)
    • Re: Howto deny a sftp connection
      ... > but that they cannot transfer files from that server. ... If you're allowing shell access then it's basically impossible to stop ... > Thats why I want to stop and deny all sftp and scp connections. ... the sftp subsystem is easily to stop by editing the sshd_config. ...
      (comp.security.ssh)
    • Re: FTP Encryption
      ... SSH as a transport in different ways, ... OpenSSH's sftp certainly doesn't use scp in any way. ... operating systems system files. ...
      (comp.security.ssh)