There is also PSCP (you'll have to google for it). Both sit on top of putty which is an SSH 1 + 2 client which MS should make default on all Windows machines. I dumped telnet and ftp, told my users that they had to use scp/ssh and things seem to be going well. They barely noticed when I turned off SSH1. Hen On 13 Mar 2002, Tilman Mueller-Gerbes wrote:
Try
from the web-page, it supports SSH1 and SSH2 protocols, though RSA authentication seems only to be available for SSH1.
It is a very good replacement for simple FTP, though ;)
cu, Tilman
Am Mit, 2002-03-13 um 18.39 schrieb Sven Michels:
Brian Topping wrote:
----- Original Message ----- From: "Sven Michels"
To: Sent: Wednesday, March 13, 2002 12:32 PM Subject: Re: [suse-security] FTP security... Michael Garabedian wrote:
...I am setting up a linux machine to do ftp and was wondering if there was a secure way to set this up so it is not hacked. I used a Windows machine and it took someone two days to hack it. Any ideas...
FTP is mostly insecure ... ftp sucks at all ;)
Use SCP. I just learned it. It rocks!
i don't want any user as real systemuser on my boxes, so scp doesn't work cause it needs real accounts (or you try to hack a pam module for auth against a db like mysql etc.). And you've still the problem with windows users, or do you know any free implementation of ssh2 for scp under windows?
-- intraDAT AG http://www.intradat.com Wilhelm-Leuschner-Strasse 7 Tel: +49 69-25629-0 D - 60329 Frankfurt am Main Fax: +49 69-25629-256 Junk mail is war. RFCs do not apply.
-- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com Security-related bug reports go to security@suse.de, not here -- Tilman M�ller-Gerbes Everything's .. under .. control (Hardware)