I am currently playing with SSH and looking for the 'right' solution to get rid
of both Telnet and FTP for my environment.
It looks like SSH is a pretty reliable product, but the docs... uh well you get
what you pay for (reference to ssh1, not 2)
My organization is willing to pay for ssh2 and a few client licenses.
The idea behind this in part was that sftp would be necessary and this would be
the most functional way to implement.
There are only a few people who need access, but some are not very computer
savvy and need ftp access.....
So far I have been unable to get sftp-server2 to function properly.... There is
little documentation on this....
Because and ssh1 based solution could allow free clients and the make software
Administration much easier, I would like to find a solution that would allow the
use of any FTP client. Note: assume that the end user is in a properly secured
environment.
Two solutions I am considering are:
PPP based VPN through ssh 1:
Seems a bit complex and has high overhead....
Port forwarding w/ ssh(1/2?)
I have yet to get port forwarding to actually work (for telnet for example)
however, I'm sure this is possible.... I probably just haven't tried right.
Is there good documentation on this?? I have a hard time understanding if I
really need to set up the forwarding on one end or both for example. So far,
just forwarding port 23 to the end server (telnet not yet shut off) is not
working for me.... It could be the client software I am using or????
After solving the port forwarding problem, there is the issue of FTP and it's
two port structure. Has anyone solved this problem? If so, how? Is there any
Internet available documentation on it??
How about proxies? Would it be practical to get the firewall to proxy sftp as
ftp???
What are some FTP solutions that people have worked out?
Does anyone have scp working under NT through the file manager??
Thanks in advance for your help!
ABG
