Transfer files securely with SFTP

SFTP is a protocol for transferring files to SSH server to save the commands and data, and must be transferred between the client. When using FTP, the data transmitted is not encrypted, by exposing this data to eavesdropping, tampering or counterfeiting of messages. With SFTP, the data is transferred to the client and server is encrypted between, so that unauthorized access to data.

Necessary components

To transfer files with the SFTP protocol, you need a server that supports SFTP and is configured for this customer. SFTP servers include the popular FileZilla, WinSCP and DataFreeway. The most popular is PuTTY SFTP client, which is available free of charge. Users who want a more intuitive interface, you can choose a Passport client user-friendly as it is Zephyr.

How does STP

There are two key components for file transfer with SFTP, the server validation and> Client authentication. These two components take advantage of the public and private keys to authenticate communication between client and server. The server machine and compare it with the server's public key with the public key stored on the client validated. The server's public key is usually located on servers in a file called "known_hosts" the active, and the client public key encrypted file stored on the machine in a room.
Customers canauthenticated in three ways:

- User name and password
- Private key and passphrase
- Keyboard interactive authentication

With the user name and password authentication, a user account on the SFTP server is set. When using the private key and password authentication, the server's public key client added to the authorized_keys "file" on the Internet. Once the server validation occurs, the customer must give their pass phrase to upload their own privateKey and complete the authentication.

Keyboard-interactive authentication method used to ask the customer a series of questions, the customer must answer these questions correctly for authentication. This allows for the implementation of authentication methods matched. For example, the user name and password authentication server can be disabled, but interactive keyboard authentication could be used to prompt the user to their customersand password.

Compression

Most clients have an option to turn on SFTP file compression. If this option is enabled, data sent from the server before sending compressed and decompressed on the client. Similarly, the data sent to the server is compressed first and the server decompresses it at the other end. This can help to accelerate the transfer of files, especially for low-bandwidth connections.

SFTP versions

Currently, there are two versions of the SFTPProtocol: SSH-1 and SSH-2. SSH-2 is a new, more secure implementation. SSH-1 uses a known security issue, and SSH-2 is recommended for maximum security.

SFTP vs FTPS

SFTP and FTPS are two completely different protocols.

- SFTP, SSH uses to secure transmissions, while FTPS uses SSL security
- Setting the default port for FTP is 21. The default port for SFTP is 22

Summary

To use SFTP, you must transmit sensitive or confidential data must bebetween a client and a server that is configured to use transactions in a secure way to SSH.

printingmachine freedesignsoftware wireless inkjet printer

Labels: , Posted by tun at 5:30 AM  

Agregar a marcadores favoritos:
  • Agregar a Technorati
  • Agregar a Del.icio.us
  • Agregar a DiggIt!
  • Agregar a Yahoo!
  • Agregar a Google
  • Agregar a Meneame
  • Agregar a Furl
  • Agregar a Reddit
  • Agregar a Magnolia
  • Agregar a Blinklist
  • Agregar a Blogmarks
  • Agregar a otro servicio

Danos tu comentario

Post a Comment

Subscribe to: Post Comments (Atom)

Home |Design by Blogger