FTP over SSL

[AgaBoogaBoo]

Can anyone give me links/articles/guides/information about FTP over an SSL connection?

I haven't heard much about this, but it seems like a compromise between SSH access and FTP access. Basically, I'm trying to find a way for people to upload securely without SSH

 

[Nothinman]

Why do you want to avoid ssh so badly?

 

[AgaBoogaBoo]

Because I don't want to give out SSH access to lots of users, security risk, not to mention my host won't like it

 

[Nothinman]

You can use sftp and still restrict ssh shell access.

 

[AgaBoogaBoo]

Originally posted by: Nothinman
You can use sftp and still restrict ssh shell access.

SFTP is still plain text, right?

Restricted Shell Access isn't as safe, at least that's what I've been done. I've was also told it isn't 100% foolproof and there are ways to get around it.

I'm going to be using a method I decide on for a data backup service.

 

[Nothinman]

SFTP is still plain text, right?

No, otherwise it would still be plain FTP.

I'm going to be using a method I decide on for a data backup service.

You might want to look at rsync then, it can be tunneled over ssh for security and it'll cut bandwidth usage.

 

[Kilrsat]

Originally posted by: AgaBoogaBoo

Originally posted by: Nothinman
You can use sftp and still restrict ssh shell access.

SFTP is still plain text, right?

Restricted Shell Access isn't as safe, at least that's what I've been done. I've was also told it isn't 100% foolproof and there are ways to get around it.

I'm going to be using a method I decide on for a data backup service.

SFTP is an ftp like server implemented as part of the OpenSSH package. So no, it is not plain text.

RSSH as the login shell and scp/sftp. FileZilla is a free sftp client, if that is also a concern.

Tada.

 

[AgaBoogaBoo]

Originally posted by: Kilrsat

Originally posted by: AgaBoogaBoo

Originally posted by: Nothinman
You can use sftp and still restrict ssh shell access.

SFTP is still plain text, right?

Restricted Shell Access isn't as safe, at least that's what I've been done. I've was also told it isn't 100% foolproof and there are ways to get around it.

I'm going to be using a method I decide on for a data backup service.

SFTP is an ftp like server implemented as part of the OpenSSH package. So no, it is not plain text.

RSSH as the login shell and scp/sftp. FileZilla is a free sftp client, if that is also a concern.

Tada.

It still uses SSH though

 

sftp > any other ftp option

 

[Kilrsat]

Originally posted by: AgaBoogaBoo

Originally posted by: Kilrsat

Originally posted by: AgaBoogaBoo

Originally posted by: Nothinman
You can use sftp and still restrict ssh shell access.

SFTP is still plain text, right?

Restricted Shell Access isn't as safe, at least that's what I've been done. I've was also told it isn't 100% foolproof and there are ways to get around it.

I'm going to be using a method I decide on for a data backup service.

SFTP is an ftp like server implemented as part of the OpenSSH package. So no, it is not plain text.

RSSH as the login shell and scp/sftp. FileZilla is a free sftp client, if that is also a concern.

Tada.

It still uses SSH though

Yes, and if you looked into the details its a shell limited to scp and/or sftp connections only. If you actually try to connect to an account setup with rssh using a normal ssh client it does not comlete the connection. The only way to complete the connection is to establish your scp/sftp connection, on which you can't actually run any shell commands. Therefore creating a simple, secure, and familiar (the FileZilla interface is the same whether its doing ftp or sftp) environment.

 

[n0cmonkey]

Nothing is 100%.
sFTP does not require shell access.

Stunnel may help with ftp over SSL, but I personally don't bother looking into it because of software like OpenSSH.

EDIT: Something was fubar with the smilie.

 

[AFB]

This is for your backup program, right?