Find Answers  /  Technology

Zoomzoom

May 28, 2008

Posted by Zoomzoom

Is using an FTP client to update a websites files safe?

I heard mention that using an FTP to update your website wasn't safe. If I enter a password each time and don't save the password what isn't safe?

Tagged:

  1. ftp client,
  2. ftp,
  3. security

Sign in or register to answer this question | ShareClose

  • Social Web
E-mail

IceNineJon

May 29, 2008

Posted by IceNineJon

4 stars ( 2 ratings )

In general, FTP communications aren't encrypted. Theoretically, someone could listen to the connection between you and your FTP server and obtain your password as it's being transmitted to the server. SFTP or transferring files over an SSH tunnel is much more secure since all the data is encrypted in both directions. Many FTP servers have also had security holes over the years so FTP has gotten a bad rap from that as well.

Sign in or register to rate or comment on this answer. | Save as Text | Save as PDF | Print

vglass

May 29, 2008

Posted by vglass

4 stars ( 2 ratings )

The problem is that in plain FTP, your password is sent unencrypted over the network. In the event that someone captures that traffic they can then see what your username and password are for the server you are connecting to. You can use FTPS (FTP over SSL) or SFTP/SSH to avoid this type of security risk.

Sign in or register to rate or comment on this answer. | Save as Text | Save as PDF | Print

techVision

May 29, 2008

Posted by techVision

0 stars ( 0 ratings )

Simple Answer - NO

You are broadcasting your password without any security. SSH is the only safe method.

Sign in or register to rate or comment on this answer. | Save as Text | Save as PDF | Print

Advertisement

You have to be a member to do that!

Existing users:

New users:

Register for an account if you're new around here.

Learn more