PHWinfo - Afficher un message - What is the difference between ftp encryption types SSL, TLS, SFTP and SSH ?

25/12/2006, 12h09

"Ertugrul Soeylemez" <never@drwxr-xr-x.org> ha scritto nel messaggio
news:emesp9$3jo$02$1@news.t-online.com...
mmmm@buzz.com (Marcus Mender) (06-12-17 12:00:42):

> However, if you already have an SSH server with key-based authentication
> running, and you have got a client that supports SFTP (which is FTP over
> an SSH tunnel), then you're already set. You can continue to use your
> normal SSH keys for FTP authentication, which is of course preferable in
> this case.

A little correction. SFTP in not FTP over SSH. SFTP uses an SSH subsystem to
start the sftp server (as Richard tell in another message) where you can
issue commands and retry/send file and navigate on directory (with privilege
you have from the user used to log in), using SSH protocol.

You can have FTP over SSH, where FTP protocol is tunnelled via SSH. So,
first you must to authenticate yourself from SSH point of view
(username/password or username/key), and after you must to authenticate to
FTP server. The two authentication may have different username and password.

On same implementation, you can tunnelled a telnet protocol under SSH. For
example you can login on your machine at office using SSH protocol (and so
ciphering packets and medium authentication). From that you can ftp/telnet
on you machines. The "local" (office) packet are in "clear" text, when pass
throught SSH machine and sent to you are ciphered.

This implementation is useful when authentication and security are not in
application (for example trasnferring file by FTP from two machine trought
Internet) and is not possibile to change or modify it.

Hope this .

I wish to all a Merry Christmas 2006!
Cesare

25/12/2006, 12h09	#22
Cesare Messages: n/a Hébergeur:	Re: What is the difference between ftp encryption types SSL, TLS, SFTP and SSH ? "Ertugrul Soeylemez" <never@drwxr-xr-x.org> ha scritto nel messaggio news:emesp9$3jo$02$1@news.t-online.com... mmmm@buzz.com (Marcus Mender) (06-12-17 12:00:42): > However, if you already have an SSH server with key-based authentication > running, and you have got a client that supports SFTP (which is FTP over > an SSH tunnel), then you're already set. You can continue to use your > normal SSH keys for FTP authentication, which is of course preferable in > this case. A little correction. SFTP in not FTP over SSH. SFTP uses an SSH subsystem to start the sftp server (as Richard tell in another message) where you can issue commands and retry/send file and navigate on directory (with privilege you have from the user used to log in), using SSH protocol. You can have FTP over SSH, where FTP protocol is tunnelled via SSH. So, first you must to authenticate yourself from SSH point of view (username/password or username/key), and after you must to authenticate to FTP server. The two authentication may have different username and password. On same implementation, you can tunnelled a telnet protocol under SSH. For example you can login on your machine at office using SSH protocol (and so ciphering packets and medium authentication). From that you can ftp/telnet on you machines. The "local" (office) packet are in "clear" text, when pass throught SSH machine and sent to you are ciphered. This implementation is useful when authentication and security are not in application (for example trasnferring file by FTP from two machine trought Internet) and is not possibile to change or modify it. Hope this . I wish to all a Merry Christmas 2006! Cesare