SFTP vs FTPS vs FTP - What is the best protocol for secure FTP?

hostingcoupons

New member
Registered
Joined
Jul 22, 2016
Messages
9
Points
0
I am connecting to my hosting using FileXilla and it is using the default protocol is SFTP, however I'm stuck at what protocol to use for any FTP solutions. I tried to Google but it could not make up my mind. I want to know your advice what is the best protocol for secure FTP? SFTP or FTPS or FTP?
 

eva2000

Well-known member
Registered
Joined
Jan 14, 2017
Messages
173
Points
28
best to worse

SFTP > FTPS > FTP
 

gagah

Well-known member
Registered
Joined
Jan 21, 2017
Messages
86
Points
0
gagah
Succinctly said. Both are encrypted but afaik FTPS still use userid & password transmitted over SSL which kind of depends on whether or not you trust the certificate itself, especially if it's self-signed, while SFTP with key only authentication will be much more secure.
 

HostYourNet-DR

Well-known member
Registered
Joined
Jan 13, 2017
Messages
139
Points
18
There are 2 different versions of SFTP.

Explicit FTPS
Implicit FTPS takes SSL one step further than simply requiring that SSL-related commands must be sent first like you can with Explicit SSL; with Implicit FTPS, an SSL handshake must be negotiated before any FTP commands can be sent by the client. In addition, even though Explicit FTPS allows the client to arbitrarily decide whether to use SSL, Implicit FTPS requires that the entire FTP session must be encrypted. Basically the way that Implicit FTPS works is that an FTP client connects to the command/control channel, in this case using port 990, and immediately performs an SSL handshake; after SSL has been negotiated, additional FTP commands for the session can be sent by the FTP client.

Implicit FTPS
Explicit FTPS is really what RFCs 2228 and 4217 envisioned; basically the way this works is an FTP client connects over the control/command channel (usually on port 21), and then the client can negotiate SSL for either the command/control channel or the data channel using new FTP commands like AUTH, PROT, CCC, etc.

https://blogs.msdn.microsoft.com/ro...ts-part-2-explicit-ftps-versus-implicit-ftps/
 

Kashfiya Rafa

New member
Registered
Joined
Jan 26, 2017
Messages
2
Points
0
Hello, "Gustavo Woltmann" my friend and me just wanna start a new site of ecommerce. So this is really a important thread to us.
After reading this thread I know why SFTP is the best.
Thanks once again #hostingcoupons for this thread.
Have a nice day.
 

HostYourNet-DR

Well-known member
Registered
Joined
Jan 13, 2017
Messages
139
Points
18
FSTP is only used for data transfer.
If you doing a ecommerce site you need and SSL cert to protect the information from the web browser to the server.
 
Older Threads
Replies
6
Views
4,663
Replies
7
Views
11,628
Replies
5
Views
5,753
Replies
33
Views
13,371
Replies
6
Views
3,077
Latest Threads
Replies
0
Views
115
Replies
0
Views
65
Replies
0
Views
57
Replies
1
Views
87
Recommended Threads
Replies
6
Views
2,567
Replies
3
Views
3,298
Replies
5
Views
3,274

Latest postsNew threads

Latest Hosting OffersNew Reviews

Sponsors

Tag Cloud

You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.

Top