On Fri, 26 Mar 1999 15:12:32 -0500 [EMAIL PROTECTED] wrote:
>Is there some equivalent of "ssh" for ftp? Like, I can replace my telnet
>by ssh and have greater security. Is the same possible with ftp? If so,
>what productc are available? Any free products?
I've seen a number of responses advocating the use of SSH v.2, which
apparantly comes with a secure ftp; i've seen people advocating the
use of scp; and i've seen an explaination of how to tunnel ftp via
ssh. I've also seen at least one response which speaks to the
availablity of SSH v.2 (sharing my belief that v.2 is not freely
available, which may be incorrect). I've not seen anyone ask which
aspects of the SSH security you are seeking, which may be inportant in
determining which ftp replacement to use, so i'll ask:
Which aspects of SSH's security are you seeking?
- Do you want the encrypted pipe (VPN?) characteristics, so that
no one who is sniffing the network can get anything other than
enciphered gibberish?
- Do you want the public key passwording ability, so that the
password you type doesn't ever leave your local host?
- Do you want the ability to connect various places without
entering a password?
- Do you want the authentication of the remote host when you
try to connect?
These can all be accomplished to different degress by various
means. Kerberose, for example, will let you connect to various places
without entering a password. SRP provides remote host authentication
and a secure password scheme. Host to host VPN capabilities exist
aplenty.
Posing more questions than answers this day,
Jeff
#include <stddisclaim.h> /* I speak for myself, not my employer */
--
Jeff Marker US West Internet Services Operations
Security Resource 600 Stinson Blvd.
[EMAIL PROTECTED] Minneapolis, MN 55413-2620
Agents of the law, luckless pedestrians, I know you're out there....
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
