News article posted on: 15-04-2019
Use SFTP for a more secure website
What is an FTP?
Many people still manage their website with the File Transfer Protocol (FTP). FTP is a protocol that is used to move data on the internet. The FTP is protected with a port number, a username and a password. The protocol ensures that a conversation takes place between the client and the server. The system uses a text file for the communication between the customer and the server. That text file was sent over the internet without protection. Data can be intercepted by third parties, in case the data is not secured. Hackers are becoming smarter in finding leaks, so there are more risks involved in the process of sending files via FTP.
Use the SFTP protocol for more security
If you want to send your files completely safe, then we recommend you send then via the new SFTP (Secure File Transfer Protocol). In comparison with the outdated FTP, the SFTP uses a Secure Shell (SSH) connection that protects your data from being sent unencrypted. Just like with the outdated FTP, you can put your files on your server via an FTP program.
For the user, the biggest difference between an FTP and a SFTP is that people use a different port on a SFTP and the host address starts with an sftp: //. For a SFTP, developers can use the ports 22 and 2222. With a SFTP all users have the same rights. Therefore, every user has access to all folders.
SFTP advantage
• Always secured
Downside
• All users have the same rights.
FTPS
Just like a SFTP, a FTPS has a secure connection. With an FTPS, SSL is used to secure the connection. With an FTPS you can add and link different types of users with limited access to files. This is not possible with SFTP. In case developers are using FTPS, they always have manually secure their connection by setting an SSL connection.
FTPS benefit
• Different users can get different rights.
Disadvantage
• The user must manually indicate that the connection must be set up securely
(not always securely).
