[Webinar] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

How to replace FTP by secureFTP on AIX

Posted on 2011-09-14
5
Medium Priority
?
534 Views
Last Modified: 2012-05-12
Hi,

I have never used aix before, but my boss asked me to replace FTP by secureFTP.

I don't know where to start, can you please help me?
0
Comment
Question by:cismoney
  • 3
  • 2
5 Comments
 
LVL 68

Expert Comment

by:woolmilkporc
ID: 36534604
What exactly do you mean with secureFTP?

AIX comes with openSSH. If you installed it (it's on the Installation DVD) then you have sftp (file transfer over SSH)  already in place.

AIX's FTP is configurable to run over TLS/SSL (FTPS). It's a bit complicated, but feasible.

Or are you talking about a third-party product? If so, which one do you have in mind? vsftpd?

wmp
0
 

Author Comment

by:cismoney
ID: 36534856
ok how do I know that my ftp is secure? *

how do i know that sftp is installed on the server instead of ftp (what is the command)
0
 
LVL 68

Accepted Solution

by:
woolmilkporc earned 2000 total points
ID: 36534896
1) Find out whether OpenSSH is installed:

lslpp -l "openss*"

If you see "openssh" and "openssl" it is installed.

2) Check in /etc/ssh/sshd_config for

Subsystem       sftp    /usr/bin/sftp-server

If this line is not commented out sftp is active.

3) If (1) and (2) are true your clients can use the "sftp" command instead of the "ftp" command (or configure their client applications to use sftp instead of ftp).

You could also disable the regular ftp daemon. See our other case (the .rhosts thing). It's the same procedure. Choose to disable "ftp".

wmp
0
 

Author Comment

by:cismoney
ID: 36534931
how do i disable the regular ftp daemon?
0
 
LVL 68

Expert Comment

by:woolmilkporc
ID: 36534939
See the last sentence in my above post and the ".rhosts" case!

"smitty inetdconf", choose "Remove an inetd Subserver", select "ftp" and go!

0

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Introduction Regular patching is part of a system administrator's tasks. However, many patches require that the system be in single-user mode before they can be installed. A cluster patch in particular can take quite a while to apply if the machine…
I promised to write further about my project, and here I am.  First, I needed to setup the Primary Server.  You can read how in this article: Setup FreeBSD Server with full HDD encryption (http://www.experts-exchange.com/OS/Unix/BSD/FreeBSD/A_3660-S…
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
This video shows how to set up a shell script to accept a positional parameter when called, pass that to a SQL script, accept the output from the statement back and then manipulate it in the Shell.
Suggested Courses
Course of the Month20 days, 12 hours left to enroll

865 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question