Re: SFTP versus FTP over SSH2

From: Richard E. Silverman (res_at_qoxp.net)
Date: 03/08/05

• Next message: Jacob Nevins: "Re: SFTP versus FTP over SSH2"
• Previous message: Richard E. Silverman: "Re: sshd handing all authentication to shell"
• In reply to: Will: "SFTP versus FTP over SSH2"
• Next in thread: Will: "Re: SFTP versus FTP over SSH2"
• Reply: Will: "Re: SFTP versus FTP over SSH2"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: 08 Mar 2005 07:11:49 -0500

>>>>> "Will" == Will <DELETE_westes@earthbroadcast.com> writes:

    Will> Can someone please explain what is the difference between SFTP
    Will> and FTP over SSH2? Is SFTP less secure?

Actually, you need to explain what you mean by "FTP over SSH2;" you did
not say what client you're using or how it's operating, and it is more
likely that SFTP is more secure. SFTP is a completely distinct
file-transfer protocol from FTP. It is specified by a draft of the SSH
working group and is designed to work over a secure full-duplex
connection, such as SSH. FTP, on the other hand, uses multiple TCP
connections in its operation and is not easily secured by SSH static port
forwarding. Unless you're using an SSH client with special FTP support
(such as Tectia, or SecureFX), it is likely that you were only protecting
the FTP command channel and not the data transfers.

    Will> We used to use the FTP over SSH2 to access files on a public
    Will> server. Now when we connect using FTP over SSH2 we get an error
    Will> that this option is administratively prohibited.

Sounds like either their firewall or SSH server configuration changed to
block/prohibit the port-forwarding channels you were using to carry (at
least part of) FTP.

-- 
  Richard Silverman
  res@qoxp.net

---

• Next message: Jacob Nevins: "Re: SFTP versus FTP over SSH2"
• Previous message: Richard E. Silverman: "Re: sshd handing all authentication to shell"
• In reply to: Will: "SFTP versus FTP over SSH2"
• Next in thread: Will: "Re: SFTP versus FTP over SSH2"
• Reply: Will: "Re: SFTP versus FTP over SSH2"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: Secure file transfer ... We're talking about SFTP, which is a variant how to use SSH to secure the ... FTP protocol. ... is it better to use AUTH SSL or SSH/SFTP?" ... (comp.security.misc) Re: Secure file transfer ... We're talking about SFTP, which is a variant how to use SSH to secure the ... FTP protocol. ... "FTP over SSH" is the protection of the command channel. ... (comp.security.misc) Re: Simple file sharing between FC2 and Mac OS X? ... > SSH should work great but you'd need a real user account on her machine. ... I use Nautilus with SFTP to ... > transfer files to/from my laptop, web server, etc. ... > ftp server, or both. ... (Fedora) Re: How 2 secure PC-PC data transfer ... The assumption that you are going to open your machine to attack is one of the worst ideas ... I have no idea what you mean by "not that secure". ... connecting a parallel port cable from PC to PC will work. ... If you have a front-end software that blocks all incoming FTP requests from the WAN (look ... (microsoft.public.vc.mfc) SFTP with no SSH session ... Suppose someone has telnet and FTP access to his System. ... suppose I have SSH and SFTP access to my system. ... (comp.security.ssh)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(13)