On 10/06/2010 10:35 AM, Maxime Alarie wrote: > -----Original Message----- > From: users-bounces@xxxxxxxxxxxxxxxxxxxxxxx [mailto:users-bounces@xxxxxxxxxxxxxxxxxxxxxxx] On Behalf Of Paul Cartwright > Sent: 04 October 2010 16:23 > To: Community support for Fedora users > Subject: Re: best FTP server for web server > > On Mon October 4 2010, Rick Stevens wrote: >>> what you mean is sftp. >> >> No, FTP-S. FTP over SSL using port 989 and 990. sftp is a part of ssh >> and uses it's encryption mechanisms. > > what I SHOULD have said is " what I 'THINK' you mean", and obviously I was > wrong:) "I never make mistakes. I thought I did once, but I was wrong." :-) > so, is it better to ftp over SSL or sftp using ssh? As others have said, chrooting FTPS is easier than chrooting ssh and its kin. sftp also infers ssh must be available as well. I don't know if that's true or not. If it is and someone guesses your password, then they get a shell via ssh. Depends on how paranoid you are. FTPS has the ability to use three different encryption things: no encryption, encryption of just the control channel or encryption of both control and data connections. vsftpd allows you to run both regular FTP and FTPS using the same daemon and there's no possibilty of an outsider getting a shell. It's up to you. We use sftp for most things here, but I've had a lot of clients in the past want FTP/FTPS. As for the paranoia thing: "Just because I'm paranoid doesn't mean they AREN'T out to get me!" ---------------------------------------------------------------------- - Rick Stevens, Systems Engineer, C2 Hosting ricks@xxxxxxxx - - AIM/Skype: therps2 ICQ: 22643734 Yahoo: origrps2 - - - - Try to look unimportant. The bad guys may be low on ammo. - ---------------------------------------------------------------------- -- users mailing list users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
