SFTP vs FTPS vs FTP - What is the best protocol for secure FTP?

Joined
Jul 22, 2016
Messages
9
Best answers
0
Points
0
#1
I am connecting to my hosting using FileXilla and it is using the default protocol is SFTP, however I'm stuck at what protocol to use for any FTP solutions. I tried to Google but it could not make up my mind. I want to know your advice what is the best protocol for secure FTP? SFTP or FTPS or FTP?
 

eva2000

Well-known member
Joined
Jan 14, 2017
Messages
173
Best answers
0
Ratings
65 5
Points
28
#2
best to worse

SFTP > FTPS > FTP
 

gagah

Well-known member
Joined
Jan 21, 2017
Messages
86
Best answers
0
Ratings
13
Points
0
#3
gagah
Succinctly said. Both are encrypted but afaik FTPS still use userid & password transmitted over SSL which kind of depends on whether or not you trust the certificate itself, especially if it's self-signed, while SFTP with key only authentication will be much more secure.
 

HostYourNet-DR

Well-known member
Joined
Jan 13, 2017
Messages
139
Best answers
0
Ratings
11
Points
18
#5
There are 2 different versions of SFTP.

Explicit FTPS
Implicit FTPS takes SSL one step further than simply requiring that SSL-related commands must be sent first like you can with Explicit SSL; with Implicit FTPS, an SSL handshake must be negotiated before any FTP commands can be sent by the client. In addition, even though Explicit FTPS allows the client to arbitrarily decide whether to use SSL, Implicit FTPS requires that the entire FTP session must be encrypted. Basically the way that Implicit FTPS works is that an FTP client connects to the command/control channel, in this case using port 990, and immediately performs an SSL handshake; after SSL has been negotiated, additional FTP commands for the session can be sent by the FTP client.

Implicit FTPS
Explicit FTPS is really what RFCs 2228 and 4217 envisioned; basically the way this works is an FTP client connects over the control/command channel (usually on port 21), and then the client can negotiate SSL for either the command/control channel or the data channel using new FTP commands like AUTH, PROT, CCC, etc.

https://blogs.msdn.microsoft.com/ro...ts-part-2-explicit-ftps-versus-implicit-ftps/
 
Joined
Jan 26, 2017
Messages
2
Best answers
0
Points
0
#6
Hello, "Gustavo Woltmann" my friend and me just wanna start a new site of ecommerce. So this is really a important thread to us.
After reading this thread I know why SFTP is the best.
Thanks once again #hostingcoupons for this thread.
Have a nice day.
 

HostYourNet-DR

Well-known member
Joined
Jan 13, 2017
Messages
139
Best answers
0
Ratings
11
Points
18
#7
FSTP is only used for data transfer.
If you doing a ecommerce site you need and SSL cert to protect the information from the web browser to the server.
 
Older Threads
Replies
6
Views
2,109
Replies
7
Views
5,698
Replies
5
Views
1,857
Replies
33
Views
5,604
Replies
6
Views
1,265
Latest Threads

Latest Hosting OffersNew Reviews

Sponsors

Tag Cloud

You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.

Top