making FTP authentication secure?

[mjz_5]

Hi:

Usernames and passwords can easily be picked up because they are not encrypted. Is there a way to make it encrypted? I heard someone say something about ftps:// instead of using just ftp:// but I can't find any information about this topic (kinda like https://).

Any help would be greatly appreciated. Thanks in advance.

BTW, i'm using windows 2000 advance server

 

[devourment77]

yes you can run a secure ftp server.. or sftp:// but you would need ssl encryption.. or find a good sftp server that has ssl packaged with it.. it is very easy to do w/ linux because it works with ssh. just search for sftp on windows on google and see what comes up. users will need a sftp client inorder to connect.

 

[mjz_5]

oo shit, no wonder i couldn't find anything, it's called sftp; not, ftps..

.... thanks, i'll start googling

 

[almostinsane1]

sftp still isn't secure. The passwords can be harvested in the clear on the server.


Never trust the server admin.

 

[mjz_5]

sftp still isn't secure. The passwords can be harvested in the clear on the server.


Never trust the server admin.

I am the server admin... I was thinking of using filezilla or guildFTP for sftp... Or is there a way i could use IIS for secure FTP?