Solved

How to replace FTP by secureFTP on AIX

Posted on 2011-09-14
5
518 Views
Last Modified: 2012-05-12
Hi,

I have never used aix before, but my boss asked me to replace FTP by secureFTP.

I don't know where to start, can you please help me?
0
Comment
Question by:cismoney
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 68

Expert Comment

by:woolmilkporc
ID: 36534604
What exactly do you mean with secureFTP?

AIX comes with openSSH. If you installed it (it's on the Installation DVD) then you have sftp (file transfer over SSH)  already in place.

AIX's FTP is configurable to run over TLS/SSL (FTPS). It's a bit complicated, but feasible.

Or are you talking about a third-party product? If so, which one do you have in mind? vsftpd?

wmp
0
 

Author Comment

by:cismoney
ID: 36534856
ok how do I know that my ftp is secure? *

how do i know that sftp is installed on the server instead of ftp (what is the command)
0
 
LVL 68

Accepted Solution

by:
woolmilkporc earned 500 total points
ID: 36534896
1) Find out whether OpenSSH is installed:

lslpp -l "openss*"

If you see "openssh" and "openssl" it is installed.

2) Check in /etc/ssh/sshd_config for

Subsystem       sftp    /usr/bin/sftp-server

If this line is not commented out sftp is active.

3) If (1) and (2) are true your clients can use the "sftp" command instead of the "ftp" command (or configure their client applications to use sftp instead of ftp).

You could also disable the regular ftp daemon. See our other case (the .rhosts thing). It's the same procedure. Choose to disable "ftp".

wmp
0
 

Author Comment

by:cismoney
ID: 36534931
how do i disable the regular ftp daemon?
0
 
LVL 68

Expert Comment

by:woolmilkporc
ID: 36534939
See the last sentence in my above post and the ".rhosts" case!

"smitty inetdconf", choose "Remove an inetd Subserver", select "ftp" and go!

0

Featured Post

On Demand Webinar - Networking for the Cloud Era

This webinar discusses:
-Common barriers companies experience when moving to the cloud
-How SD-WAN changes the way we look at networks
-Best practices customers should employ moving forward with cloud migration
-What happens behind the scenes of SteelConnect’s one-click button

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Java core in Solaris 10 1 314
Unix Question 19 53
unix in java example 9 78
Shell Script- gzip 5 50
My previous tech tip, Installing the Solaris OS From the Flash Archive On a Tape (http://www.experts-exchange.com/articles/OS/Unix/Solaris/Installing-the-Solaris-OS-From-the-Flash-Archive-on-a-Tape.html), discussed installing the Solaris Operating S…
I have been running these systems for a few years now and I am just very happy with them.   I just wanted to share the manual that I have created for upgrades and other things.  Oooh yes! FreeBSD makes me happy (as a server), no maintenance and I al…
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
This video shows how to set up a shell script to accept a positional parameter when called, pass that to a SQL script, accept the output from the statement back and then manipulate it in the Shell.

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question