SFTP (Secure File Transfer Protocol)

-
SFTP (Secure File Transfer Protocol) is a protocol used for transferring files from one machine to another or in between remote servers in a secure manner, meaning that the data being transferred is encrypted. SFTP extend upon FTP (File Transfer Protocol) which does the same job but without SSH (Secure Shell) for a secure connection.

  • SSH: A cryptographic network protocol, which allow users to perform a wide range of network services over a unsecure network. To make use of SSH a pair of keys is needed, namely a public and private key. The public key is then placed anywhere on the server whereas the private key is used on the client side to connect. Once the pairs are matched against each other the system unlocks. 

The idea is then that once a secure connection is established files can be transfered to the server and either processed directly on the server or downloaded by another client which use SFTP as well.



To demonstrate how SFTP works we will walk through the key generation process and then try to connect securely to a remote server using FileZilla.


  1. Start by downloading and installing Putty from the following website: https://www.putty.org/
  2. Navigate to folder in which Putty has been installed and open the application PuttyGen.exe

The PuttyGen application should look similar to the picture below:



3. Click "Generate" to generate a public/private key pair, and remember to have it set to RSA 2048.

Once generated you will see similar screen as below:


4. Then click Save Public key and Save private key for later use. However be sure to protect your private key with a passphrase before saving it. You can do so by entering a password in the field Key passphrase as shown in the picture above.

5. Once the two keys are saved you can upload the public key to your server, normally such is possible through a web host interface depending on where your server is hosted.

6. Open Filezila and select Site manager, Select SFTP as your Protocol and Key File as your Logon type. If you information is filled out correctly you should be able to logon through a secure connection using SFTP. The picture below illustrate a correct configured setting. Remember however to set the host and port to your own server IP.






Kommentarer

Send en kommentar

Populære opslag fra denne blog

Neuralink - The merging of Brain and Machine

-
Billede
It has been showcased in numerous movies, how people in sci-fi universes is capable of uploading their brain to a computer or a network either to escape death or as way to achieve super human intelligence. However, as of now such ideas has been kept within fiction and not something that anyone thought could be possible in the near future, this however might just have changed after Elon Musk and the Neuralink company revealed their current research at a press conference which took place Tuesday 16th of July 2019. So in this blog post we will look further into exactly what Neuralink is doing and how they are doing it, along with some advise of how you can get into this exiting area yourself. Should you be interested in the full Neuralink event it can be seen at Neuralinks own YouTube channel below: What is Neuralink? The company were founded in 2016 by Elon Musk and 8 others and has since its founding raised more than 150 million dollars in funding to support its vision and f...
Læs mere

Uber Technology Stack

-
Billede
The Content of this blog post is based on:  https://eng.uber.com/tech-stack-part-one/ Almost everyone in the western world is familiar with the app called Uber. Uber is without doubt the most popular service of reliable transportation. By focusing entirely on mobile platforms they are a so called next generation company, which takes advantages of how a simple application build up around a strong inovative idea can make an impact on millions of people around the world. However a good idea and a great UI can't stand alone, especially not when dealing with such a large user base. In this blog post we will try break down the technology stack used in Uber. As Ubers user base has grown with such a rapid speed, they now face similar global scaling problems as some of the most successful software companies. The infrastructure and storage of Uber has therefore changed since their first launch and will most likely conteniue to do so as new solutions is found to optimize todays stand...
Læs mere

Python Password Hashing (Bcrypt)

-
Billede
A hash is designed to act as ”one-way-function” making it easy to perform but very hard to reverse. The reason why this is so beneficial when it comes to password managing and login handling, is because it allows the developers to convert the original password into a unique phrase that can be stored in the database. By using a hash function the application don’t have to match the original password in clear text with the password given upon login as it does not know what that password is. Instead it only need to know what hashing function where used and then see if the password entered generates the same hash value as the one saved in the database. This little trick provides the same login functionality as when all passwords were in clear text but the difference here is that now it’s only the user who knows exactly what the password is. Is Hashing flawless? However this technique is not flawless, as nothing is really secure when it comes to Information Security. Since the has...
Læs mere