Harel
asked on
Best FTP for bussiness
Hi,
What is the best way to create a secure FTP for a company ?
What is the best way to create a secure FTP for a company ?
I'd say use Filezilla Server. Then enable secure transfer: https://wiki.filezilla-project.org/FTPS_using_Explicit_TLS_howto_(Server)
Filezilla Server is free, but also the best because:
- Easy to manage, you can easily see, which users, have access to which folders etc.
- Anti Hammer / IP ban feature
- Easily setup dynamic ports range
All this, makes it an easy choice to never ever touch Windows' or IIS' built-in FTP server
Filezilla Server is free, but also the best because:
- Easy to manage, you can easily see, which users, have access to which folders etc.
- Anti Hammer / IP ban feature
- Easily setup dynamic ports range
All this, makes it an easy choice to never ever touch Windows' or IIS' built-in FTP server
ASKER
I want the option to give external/internal users to send/receive large files... instead of using free services like wetransfer/jumbomail which are forbidden to use with some companies ...
I prefer to pay a web service so it can be access from more networks.
I want to isolate the traffic from my office network ( only when needed ) and to give lab networks access with their own adsl connection.. but still I want the option to manage folders / users access..
I prefer to pay a web service so it can be access from more networks.
I want to isolate the traffic from my office network ( only when needed ) and to give lab networks access with their own adsl connection.. but still I want the option to manage folders / users access..
Best FTP, don't use FTP, use SFTP (secure FTP).
If you're running Windows use FileZilla.
If you're running Linux, install the mysecureshell package.
If you're running Windows use FileZilla.
If you're running Linux, install the mysecureshell package.
Filezilla is very common.
Also look at Ipswitch WS_FTP client and WS_FTP server. You can do this securely, transfer very large files, pick up where you left off if need be, and schedule your transfers. You can use Ipswitch Support as well which is good.
I have used WS_FTP for some years.
Also look at Ipswitch WS_FTP client and WS_FTP server. You can do this securely, transfer very large files, pick up where you left off if need be, and schedule your transfers. You can use Ipswitch Support as well which is good.
I have used WS_FTP for some years.
ASKER
I'm trying to decide what is the best way...
FTP is mainly for lab uses.. but sometimes also for office..
1- using web service and not to use any hardware in my company - this way - no need for hardware, wont load any network if not needed.
main problem - security and management.
2 - using Linux/Windows in my site - better management and control security - can connect to lab network directly with another lan port..
main problem - need to have separate adsl line with static IP, maintenance..
FTP is mainly for lab uses.. but sometimes also for office..
1- using web service and not to use any hardware in my company - this way - no need for hardware, wont load any network if not needed.
main problem - security and management.
2 - using Linux/Windows in my site - better management and control security - can connect to lab network directly with another lan port..
main problem - need to have separate adsl line with static IP, maintenance..
I've used Cerberus SFTP in the past and thought it was very stable and full featured. Just to throw another option for you to look at, as others have stated filezilla is a good option also from what I've been told but I've never used it myself.
FTP is 100%... instantaneously... hackable...
Only thrillseekers use FTP, rather than SFTP.
Tip: Far more hacks come from people inside a network (in large infrastructures) than outside the network.
If you only have one person inside a network, FTP might be fine... although... I always use SFTP, independent of user count.
If you have many people inside a network, always use SFTP.
If you have an option to use Linux for your SFTP server, use Linux + mysecureshell, as mysecureshell is a zero config server.
You install + run sftp-verif (answer yes to anything requiring fixing) + you're done. No user permission or chroot hoops to jump through.
Zero Config == The way software should work.
Only thrillseekers use FTP, rather than SFTP.
Tip: Far more hacks come from people inside a network (in large infrastructures) than outside the network.
If you only have one person inside a network, FTP might be fine... although... I always use SFTP, independent of user count.
If you have many people inside a network, always use SFTP.
If you have an option to use Linux for your SFTP server, use Linux + mysecureshell, as mysecureshell is a zero config server.
You install + run sftp-verif (answer yes to anything requiring fixing) + you're done. No user permission or chroot hoops to jump through.
Zero Config == The way software should work.
ASKER
So Linux + mysecureshellis the best and I understand it also means you suggest to use my hardware and not using web service ? Is there any web service I can use and pay that is secured and no worries or there is nothing like that ? or any other option ?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Check https://www.howtogeek.com/194740/what-is-the-difference-between-ftps-and-sftp/ explain the difference between FTPS and SFTP.
For starters, you want to ensure that you configure your server NOT to fall back to FTP. This would prevent insecure connections and refuse connections where secure ones cannot be made.
FileZilla supports FTPS, not SFTP. SFTP is easier in terms of firewall configuration. I'd recommend going the SFTP route, but that requires switching away from FileZilla as your server. Bitvise SSH Server would be one of your many options (supports FTPS and SFTP) in addition to products listed by others.
If you're looking for an outside service, Maytech would be an option.
FileZilla supports FTPS, not SFTP. SFTP is easier in terms of firewall configuration. I'd recommend going the SFTP route, but that requires switching away from FileZilla as your server. Bitvise SSH Server would be one of your many options (supports FTPS and SFTP) in addition to products listed by others.
If you're looking for an outside service, Maytech would be an option.
1) So Linux + mysecureshell is the best...
The term "best" is subjective.
My preference is mysecureshell because it's zero config + only provides SFTP support, so zero accidental fallback to FTP.
2) And I understand it also means you suggest to use my hardware and not using web service?
SFTP is not a Web service running on port 443 using HTTPS.
SFTP is a SSHD (sort of...) service, running on port 22 using SSH.
3) Is there any web service I can use and pay that is secured and no worries or there is nothing like that ? or any other option ?
Possibly. You'll have to search around for this.
If you're looking for a cheap option, KimSufi (OVH Imprint/Brand) pricing starts at $5/month USD for a dedicated server + 500G of space or $17/month USD for 2Tb of space.
The term "best" is subjective.
My preference is mysecureshell because it's zero config + only provides SFTP support, so zero accidental fallback to FTP.
2) And I understand it also means you suggest to use my hardware and not using web service?
SFTP is not a Web service running on port 443 using HTTPS.
SFTP is a SSHD (sort of...) service, running on port 22 using SSH.
3) Is there any web service I can use and pay that is secured and no worries or there is nothing like that ? or any other option ?
Possibly. You'll have to search around for this.
If you're looking for a cheap option, KimSufi (OVH Imprint/Brand) pricing starts at $5/month USD for a dedicated server + 500G of space or $17/month USD for 2Tb of space.
We had similar requirements, and after a HEAP of searching, we settled on this:
https://web.synametrics.com/SynaMan.htm
This is not FTP, bur rather HTTPS. The advantage of that is that users can more easily send in files, just from a standard browser.
https://web.synametrics.com/SynaMan.htm
This is not FTP, bur rather HTTPS. The advantage of that is that users can more easily send in files, just from a standard browser.
I like the price of mysecureshell better than than the SynaMan price.
And SynaMan does look useful, if the price works for the project's budget.
And SynaMan does look useful, if the price works for the project's budget.
Were you able to find a solution for this? Of all the solutions offered in this thread, only the Amazon AWS Transfer for SFTP option allows you to solve this problem without hosting your own server software (presumably at your site).
Keep in mind that there are lots of reasons why hosting your own hardware may be necessary. For example, depending on what kind of data you are storing there may be regulations about where it can be stored. If you are dealing with large files and/or a high volume of files, then a remote solution may also pose challenges.
If hosting your own solution is a good option for you, there are lots of secure options available that are very easy to implement. Robo-FTP Server (https://www.robo-ftp.com/robo-ftp-server), for example, runs on Windows, supports all the popular secure file transfer protocols (SFTP, FTPS, HTTPS), including a skinnable web interface for uploading/downloading files, and can be set up in minutes. Additionally, it offers built-in automation to handle things like sending notifications when an upload/download happens, etc.
Keep in mind that there are lots of reasons why hosting your own hardware may be necessary. For example, depending on what kind of data you are storing there may be regulations about where it can be stored. If you are dealing with large files and/or a high volume of files, then a remote solution may also pose challenges.
If hosting your own solution is a good option for you, there are lots of secure options available that are very easy to implement. Robo-FTP Server (https://www.robo-ftp.com/robo-ftp-server), for example, runs on Windows, supports all the popular secure file transfer protocols (SFTP, FTPS, HTTPS), including a skinnable web interface for uploading/downloading files, and can be set up in minutes. Additionally, it offers built-in automation to handle things like sending notifications when an upload/download happens, etc.
ASKER
We are testing AWS solution..
The main issue is that I dont want to have separate ADSL for this and to handle all the configuration.... just to have a simple solution for transferring large files and not using WeTransfer like services...
The main issue is that I dont want to have separate ADSL for this and to handle all the configuration.... just to have a simple solution for transferring large files and not using WeTransfer like services...
I provided Maytech as a solution that is a hosted solution.
ASKER
Maytech - looks great.. but... our customers looking for really well-known service - they even dont want to use google drive as an option
Is your customer using O365?
ASKER
some of them use but we dont..
For the ones that do, you may consider Microsoft Teams. However, I will warn that there is a learning curve, especially if the other party also has 365.
Maytech has been around since 2006, so we're not talking about some random startup. Clearly, Amazon is a much better known company.
Maytech has been around since 2006, so we're not talking about some random startup. Clearly, Amazon is a much better known company.
>> The main issue is that I dont want to have separate ADSL for this and to handle all the configuration
I'm not sure we understand your ADSL requirement? You say "I dont want to have separate ADSL" but you also say "and to give lab networks access with their own adsl connection".
The ADSL topic does not seem to match your original question for which you have received a couple of answers already.
You should be able to configure the AWS service from your mobile, so what's it with ADSL?
I'm not sure we understand your ADSL requirement? You say "I dont want to have separate ADSL" but you also say "and to give lab networks access with their own adsl connection".
The ADSL topic does not seem to match your original question for which you have received a couple of answers already.
You should be able to configure the AWS service from your mobile, so what's it with ADSL?
What do you have, and what do you want to do?