• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 307
  • Last Modified:

Secure FTP

I have a linux server (enterprise edition). Currently have vsftpd setup and running. I need the FTP sesssion that is established to be encrypted from our server to other vendors. What do I need to do to setup a secure FTP server that vendors can send information back and forth to us?
0
MCHDMISDEPT
Asked:
MCHDMISDEPT
1 Solution
 
chris_calabreseCommented:
Although vsftpd supports FTP/SSL, most other FTP implementations do not (or at least most sites don't have it configured to work even if the underlying FTP server does support it). Plus most FTP clients don't support it either.

Therefore I would not recommend relying on FTP/SSL for securing connections to multiple business partners.

Other options to look at are:
1. Open-text FTP, but PGP-encrypt/sign the data.
2. Open-text FTP over VPNs
3. Web app that lets you do uploads and downloads and runs in an HTTP/S session
4. XML/SOAP/SOA type web app under HTTP/S
0
 
nls73mCommented:
ssh and windows secure copy?
0
 
Dushan De SilvaCommented:
Use OFTP.

BR Dushan
0
 The Evil-ution of Network Security Threats

What are the hacks that forever changed the security industry? To answer that question, we created an exciting new eBook that takes you on a trip through hacking history. It explores the top hacks from the 80s to 2010s, why they mattered, and how the security industry responded.

 
m1tk4Commented:
As a matter of fact, there is a number of clients that support FTPS (or FTP with AUTH command and SSL encryption of password and/or data):

http://www.ford-hutchinson.com/~fh-1-pfh/ftps-ext.html#client

0
 
Gabriel OrozcoSolution ArchitectCommented:
Enable SSL on your vsftp and give this program to your users:
http://winscp.net/eng/index.php

winscp is freeware and works pretty well for our clients

however, I use it along with ssh and a restricted shell:
http://freshmeat.net/projects/rssh/
http://freshmeat.net/projects/scponly/
0
 
kanwalzeetCommented:
Why not configure openSSH on your linux system. This will not only provide SSH ( Secure Shell = Encrypted telne) but also provide SCP (Secure copy= Encrypted FTP).  Since these ftp session will be encrypted, users will require to use special FTP client programe such as PSFTP ( http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html) or winscp. By default SSH service runs on 22 port so you need to open this port on your firewall, if any, between sever and client/users.

all the best
0
 
kblack05Commented:
kanwalzeet has the right idea.
0
 
Gabriel OrozcoSolution ArchitectCommented:
yep

the same idea I posted before 8-)
0

Featured Post

What Security Threats Are We Predicting for 2018?

Cryptocurrency, IoT botnets, MFA, and more! Hackers are already planning their next big attacks for 2018. Learn what you might face, and how to defend against it with our 2018 security predictions.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now