Highest Voted 'sftp' Questions - IT Security Stack Exchange

0

votes

1 answer

Securely transfer a file to a server via PHP

I'm trying to extract a specific dataset via a daily cronjob written in PHP (by extracting the data from a MariaDB DB), and transfer it onto another server D which is externally available to a client. The approach I'm using is: A) Extract data from…

asked Nov 03 '21 at 09:51

DevelJoe

115
4

0

votes

2 answers

Percent-encoding in WinSCP in SFTP password, why?

I recently discovered the problem with Percent-encoding. It makes perfectly sense when we are dealing with such problem in a browser scenario. But I don't get why a software like WinSCP can be affected by the same issue. In my opinion the special…

passwords ssh encoding ftp sftp

asked Sep 27 '21 at 10:33

Francesco Mantovani

123
5

0

votes

1 answer

Does Forcepoint Security Manager 8.5 (WebSense) allows SFTP petitions?

Can I use Forcepoint Security Manager 8.5 (WebSense) as an http proxy for my SFTP client connections to external Servers? Currently when doing http requests I'm able to specify an http proxy to fetch external resources (Ex. google.maps) and it works…

http-proxy sftp

asked Aug 04 '21 at 20:01

user1261620

113
2

0

votes

0 answers

What are the security best practices for setting up an SFTP server

I'm trying to set up an SFTP server for a use case. I need the server to be extremely secure. What are the best practices that I should keep in mind? I referred a lot of blogs and posts but couldn't find an end-to-end guide for setting up a secure…

sftp

asked Mar 09 '21 at 01:44

Neron Joseph

111
1
5

0

votes

1 answer

Is it a good idea to host a SFTP server within a dockerized environment with mounted host directories?

For platform hardware independence, a proposal to host a SFTP server within a containerized environment was being considered. A container or pod would have the server running within it, with mounted host directories for file related operations. I am…

ssh docker sftp

asked Oct 01 '20 at 07:40

user1173240

103
3

0

votes

1 answer

Trying To Set Up An SFTP Server Securely On a Synology NAS? Any Advice?

So I have SFTP running on a server that I'm working on. It works fine, and it has a very long random like 20 digit password to login. I've already looked at the Synology logs and since port 22 is exposed hackers have already tried and failed at…

ftp sftp

asked Dec 19 '19 at 02:32

user2963603

111
3

0

votes

1 answer

SFTP -What is Public Key is Duplicated on another server

I have an SFTP server. My ServerA wants to send a file to SFTP server, and i was told that ServerA public key needs to stored on SFTP server for Authentication purposes. My question is, if the public key of ServerA gets installed into another server…

encryption sftp

asked Sep 18 '19 at 05:02

ZEE

157
3

0

votes

1 answer

Using different host key algorithms on sftp server and client

I need to setup a sftp client the problem i am facing is that sftp client library i am using does not support the host key algorithm supported by sftp server. Basically I am talking about the public key authentication here. My sftp server would send…

ssh .net sftp

asked May 14 '19 at 08:44

alinizam

3
2

0

votes

0 answers

Is sFTP as a technology acceptable in FedRAMP compliant projects?

I seem to recall that there was some problem with using sFTP in some government environments, but now I need to know if it poses a risk on a FedRAMP-compliant project.

compliance sftp

asked Feb 12 '19 at 15:55

ShieldOfSalvation

173
1
9

0

votes

1 answer

Differ between encrypted and unecrypted FTP (21) without login

I'm looking at an IP range as a part of a project and discovered several FTP server. They all run vsftpd (3.0.2) on port 21. I do not have login credentials and anonymous logins are disabled. Can I somehow identify whether the server would encrypt…

ftp sftp

asked Sep 14 '18 at 11:59

SaAtomic

989
2
15
27

0

votes

1 answer

How safe is it to edit PHP files in Web browser via CPanel?

For some reason my Notepad++ can't connect via SFTP since yesterday so I was thinking about editing my site via CPanel file manager which has HTTPS. I never thought about editing my site in this way, so I'm wondering if it's as safe as SFTP?

tls sftp cpanel

asked Jun 10 '17 at 23:19

Marko Dakič

1
1

0

votes

1 answer

Is SFTP going to improve Wordpress security?

Disclosure: I am a developer and not a security expert I am working on a Wordpress site for a client who is (understandably) concerned about WP security. The client will be hosting the site on their own infrastructure and their IT department that…

wordpress sftp

asked May 15 '17 at 13:35

Daniel

103
3

0

votes

1 answer

Public key for sensitive data

I'm curious about a setup that involves downloading sensitive information from an SFTP server over the internet. The current approach is for the clients to connect to the SFTP server with a private key. The vendor (who hosts the SFTP server) is now…

key-management sftp

asked Dec 22 '16 at 10:36

bfloriang

205
1
6

0

votes

2 answers

SFTP server: should we prevent SSH host key changes?

We host a SFTP server and we encourage our customers to check the SSH host key when connecting. I was always under the impression that the SSH host key was fixed - it would only change when reinstalling the OS. But in the past the SSH host key was…

sftp ssh-host-key

asked Sep 29 '16 at 20:44

Julian

516
6
18

0

votes

2 answers

How to spoof SFTP?

Is there anyway to spoof an organisation that distributes files across the internet via SFTP? I know it's easy to spoof an IP address. But how easy is it to an SFTP link?

spoofing sftp

asked Jun 28 '16 at 03:22

kpipeline

11
3

Questions tagged [sftp]