Secure FTP

I have a linux server (enterprise edition). Currently have vsftpd setup and running. I need the FTP sesssion that is established to be encrypted from our server to other vendors. What do I need to do to setup a secure FTP server that vendors can send information back and forth to us?
MCHDMISDEPTAsked:
Who is Participating?
 
kanwalzeetCommented:
Why not configure openSSH on your linux system. This will not only provide SSH ( Secure Shell = Encrypted telne) but also provide SCP (Secure copy= Encrypted FTP).  Since these ftp session will be encrypted, users will require to use special FTP client programe such as PSFTP ( http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html) or winscp. By default SSH service runs on 22 port so you need to open this port on your firewall, if any, between sever and client/users.

all the best
0
 
chris_calabreseCommented:
Although vsftpd supports FTP/SSL, most other FTP implementations do not (or at least most sites don't have it configured to work even if the underlying FTP server does support it). Plus most FTP clients don't support it either.

Therefore I would not recommend relying on FTP/SSL for securing connections to multiple business partners.

Other options to look at are:
1. Open-text FTP, but PGP-encrypt/sign the data.
2. Open-text FTP over VPNs
3. Web app that lets you do uploads and downloads and runs in an HTTP/S session
4. XML/SOAP/SOA type web app under HTTP/S
0
 
nls73mCommented:
ssh and windows secure copy?
0
How do you know if your security is working?

Protecting your business doesn’t have to mean sifting through endless alerts and notifications. With WatchGuard Total Security Suite, you can feel confident that your business is secure, meaning you can get back to the things that have been sitting on your to-do list.

 
Dushan De SilvaTechnology ArchitectCommented:
Use OFTP.

BR Dushan
0
 
m1tk4Commented:
As a matter of fact, there is a number of clients that support FTPS (or FTP with AUTH command and SSL encryption of password and/or data):

http://www.ford-hutchinson.com/~fh-1-pfh/ftps-ext.html#client

0
 
Gabriel OrozcoSolution ArchitectCommented:
Enable SSL on your vsftp and give this program to your users:
http://winscp.net/eng/index.php

winscp is freeware and works pretty well for our clients

however, I use it along with ssh and a restricted shell:
http://freshmeat.net/projects/rssh/
http://freshmeat.net/projects/scponly/
0
 
kblack05Commented:
kanwalzeet has the right idea.
0
 
Gabriel OrozcoSolution ArchitectCommented:
yep

the same idea I posted before 8-)
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.