approach to securing ftp service ?

as you know, information transferred betwen ftp client and server are not protected. So please tell me how many approach to secure ftp service ? which are they ? compare them ?
Now which approach is most widely used ? if you can please give me some technical documents about these approach.

I wanna got a perspective view of securing ftp service. Thanks in advance.
hoaivanAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

chris_calabreseCommented:
Some options...

Use regular old FTP, but encrypt and sign the files with PGP or similar.

Use FTP/SSL (aka ftps) - This is an IETF standard-tack extension to FTP, but not yet widely implemented. See http://www.ford-hutchinson.com/~fh-1-pfh/ftps-ext.html

Abandon FTP and use SFTP, the FTP-like interface to SSH. You have to be careful to setup the accounts so that they can only be used for SFTP and not also for regular command-line login, though.

Abandon FTP and use HTTP/S (yes, it can do both uploads and downloads). There are a variety of Perl and PHP modules out there to make this easy to do.

Tunnel the existing FTP connection in IPsec.

Use a commercial file transfer product such as ValiCert (actually uses ftps under the hood in this case).
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
hoaivanAuthor Commented:
thanks.
But which approach is and will be the most widely use ? Is FTP over SSL ? I found that many ftp server and client support it.
0
chris_calabreseCommented:
IBM has been pushing FTP/SSL on the mainframe, asd as a result Rumba and other mainframe-centraic players have added SSL support to their FTP offerings.

However, it is not yet popular in the Unix or Windows words, where SSH is much more popular.

That could change with the introductoin of the next version of wu-ftpd, which supports FTP/SSL. No word on when that will be out, though (it's been in the works for a couple of years now)
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Security

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.