Forums

The forums ran from 2008-2020 and are now closed and viewable here as an archive.

Home Forums Other ftp vs sftp

  • This topic is empty.
Viewing 7 posts - 1 through 7 (of 7 total)
  • Author
    Posts
  • February 13, 2009 at 4:19 am #24156
    jitendra
    Participant

    If FTp is less secure than Sftp then why people use FTP

    February 15, 2009 at 8:28 pm #54037
    von
    Member

    in short, FTP is "in the clear" so every character you type is sent across the internet completely readable. So should someone be inline of your traffic they could easily read your user name and password. sFTP is encrypted. And yes, googling and wiki’ng would have answered this.

    March 5, 2009 at 10:40 am #54710
    Rob MacKay
    Participant
    "bcde906" wrote:
    hi,this is my new site,can you give some advice :-)
    runescape gold

    yea… STOP WASTING YOUR TIME SPAMMING OUR FORUMS! *ban*

    March 5, 2009 at 4:20 pm #54732
    davesgonebananas
    Member
    "jitendra" wrote:
    If FTp is less secure than Sftp then why people use FTP

    The short answer is because not all clients support SFTP.

    A lot of existing clients and, importantly, web publishing tools only support plain FTP. If web hosts were to abandon FTP in favour of the secure variety they would be inundated with support requests by users trying to publish from MS Frontpage, or whatever.

    One could say that users of older tools without support for SFTP should upgrade. We said that about IE6. Years ago. Add to that the confusion over SFTP, FTP over SSH and FTPS and which one(s) to support and it just becomes easier to allow users to use plain FTP.

    March 6, 2009 at 3:41 pm #54763
    kayanat
    Member

    Connecting to a server through an SFTP protocol is essentially the same as connecting through a standard FTP protocol. The only real difference is that you instruct your FTP client to connect to your SSH port rather than your FTP port (in most cases, FTP defaults to port 21 while SSH defaults to port 22). If you have an FTP client that doesn’t allow you to insert custom port numbers,

    March 7, 2009 at 7:24 am #54772
    davesgonebananas
    Member

    What I meant to say was the reason why most web hosting servers still allow plain ftp is that not all software clients support the other more secure protocols. If server operators ditched ftp support then we would all stop using ftp, however until the majority of software clients support sftp (and that currently is not the case) then they won’t do that.

    It’s the same kind of chicken and egg situation with IE6 – if designers stopped supporting it (by using hacks and work arounds for it) then people would soon ditch it. Most designers go to great lengths to ensure that their sites look, if not perfect, at least passible in IE6. This means its users have no incentive to upgrade. That is to say they have no incentive other than the already valid reasons of better security, more features and modern standards support but since they have ignored these for some time it seems a more compelling reason is required.

    However, I suppose anonymous ftp will always have a place in the same way that we use non-secure http for most sites.

    March 10, 2009 at 2:41 am #54836
    jitendra
    Participant

    How can i know my server has SFTP support or not ?

  • Author
    Posts
Viewing 7 posts - 1 through 7 (of 7 total)
  • The forum ‘Other’ is closed to new topics and replies.