Solved

How to replace FTP by secureFTP on AIX

Posted on 2011-09-14
5
496 Views
Last Modified: 2012-05-12
Hi,

I have never used aix before, but my boss asked me to replace FTP by secureFTP.

I don't know where to start, can you please help me?
0
Comment
Question by:cismoney
  • 3
  • 2
5 Comments
 
LVL 68

Expert Comment

by:woolmilkporc
ID: 36534604
What exactly do you mean with secureFTP?

AIX comes with openSSH. If you installed it (it's on the Installation DVD) then you have sftp (file transfer over SSH)  already in place.

AIX's FTP is configurable to run over TLS/SSL (FTPS). It's a bit complicated, but feasible.

Or are you talking about a third-party product? If so, which one do you have in mind? vsftpd?

wmp
0
 

Author Comment

by:cismoney
ID: 36534856
ok how do I know that my ftp is secure? *

how do i know that sftp is installed on the server instead of ftp (what is the command)
0
 
LVL 68

Accepted Solution

by:
woolmilkporc earned 500 total points
ID: 36534896
1) Find out whether OpenSSH is installed:

lslpp -l "openss*"

If you see "openssh" and "openssl" it is installed.

2) Check in /etc/ssh/sshd_config for

Subsystem       sftp    /usr/bin/sftp-server

If this line is not commented out sftp is active.

3) If (1) and (2) are true your clients can use the "sftp" command instead of the "ftp" command (or configure their client applications to use sftp instead of ftp).

You could also disable the regular ftp daemon. See our other case (the .rhosts thing). It's the same procedure. Choose to disable "ftp".

wmp
0
 

Author Comment

by:cismoney
ID: 36534931
how do i disable the regular ftp daemon?
0
 
LVL 68

Expert Comment

by:woolmilkporc
ID: 36534939
See the last sentence in my above post and the ".rhosts" case!

"smitty inetdconf", choose "Remove an inetd Subserver", select "ftp" and go!

0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

In tuning file systems on the Solaris Operating System, changing some parameters of a file system usually destroys the data on it. For instance, changing the cache segment block size in the volume of a T3 requires that you delete the existing volu…
This tech tip describes how to install the Solaris Operating System from a tape backup that was created using the Solaris flash archive utility. I have used this procedure on the Solaris 8 and 9 OS, and it shoudl also work well on the Solaris 10 rel…
Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…
This video shows how to set up a shell script to accept a positional parameter when called, pass that to a SQL script, accept the output from the statement back and then manipulate it in the Shell.

895 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now