FTP, FTPS and FTPES
The File Transfer Protocol dates back to the early 1970s. At the time, the protocol was concerned purely with transferring files between a client and server. As with other tools, such as telnet, security wasn’t a concern.
Security is a major concern nowadays: sending your FTP username and password to a server in plain text is a really bad idea. Although plain FTP is still in use, most people nowadays use FTPES.
FTPS: implicit security
The first attempt to make FTP secure was FTPS. FTPS uses port 990 instead of port 21 to connect securely to a server. FTPS never became a hit, mainly because the FTP protocol doesn’t define the implicit negotiation used by FTPS. That is, FTP clients are supposed to negotiate the level of security with the server, but FTPS doesn’t do that: it implies the use of TLS. Like plain FTP, FTPS has fallen out of favour.
FTPES: explicit security
The method widely in use nowadays is FTPES. With FTPES (explicit FTPS) the client and server use port 21 to negotiate the level of security to be used. The client can ask the server to switch to an encrypted channel via the AUTH SSL or AUTH TLS command, and after the server has established a secure channel the client can securely send the user credentials.
Confusing lingo
The reason many people are confused about different FTP methods is that it is reasonable to assume that FTPS means secure FTP, in the same way that HTTPS is secure HTTP and IMAPS is secure IMAP. However, when people talk about FTPS they usually talk about FTPES. Here is a quick recap of the differences:
| Type | Port | Notes |
|---|---|---|
| FTP | 21 | Plain text communication between client and server. |
| FTPS | 990 | TLS implied (no negotiation between client and server) |
| FTPES | 21 | Level of security is negotiated between client and server |
What about SFTP?
SFTP is another protocol for transferring files. Other than that SFTP has nothing in common with FTP, FTPS and FTPES. SFTP is short for SSH File Transfer Protocol and is an extension of the SSH protocol. This implies that the client needs to have shell access in order to use SFTP. By default, it uses the SSH port (22).
Featured Blogs
An Introduction to AWS Management
One of the many excellent solutions that we can offer you here at catalyst2 is our AWS management. AWS stands for Amazon Web Services and it is a scalable public cloud that we can help you to set up, manage, monitor, maintain and grow. We have years of experience working with different servers and hosting …
How We Protect your Data on our Servers
The care of your customer’s data is a legal requirement but it’s also important to take care of your own data, which is why having the right security is incredibly important. Security is a vital part of our service here at catalyst2. We often get asked about how we properly protect your server data and …
Why you Should Be Upgrading to a Managed Dedicated Server
Finding the right server for your business can be a challenge. You need to find the one that meets all of your needs without compromising your budgetary restrictions. This can seem like a lot of criteria to fill, but fortunately for you, you’re here with us at catalyst2 and we can help introduce you to …
Managed vs Unmanaged Servers; Which is your Best Option?
Having an entire server dedicated to your internet presence is a great choice for your business. Our most popular solution, the dedicated server allows you a whole server to be dedicated to your business, unlike the other options available, which only offer a partial server that may be congested by other businesses. If you’re experiencing …
VPS: An Introduction to Private Servers
There is a lot to say about VPS. This Virtual Private Server from the team at catalyst 2 is designed to offer you the infrastructure that you need to build a strong online presence. All of our VPS’s are fully managed by our team at catalyst2, ensuring that they are tailored to the needs of …
Dedicated, Private or Shared; Which Server is Right for your Business?
Getting your business online is a big step forward and you don’t want to make a wrong decision right at the start. Starting off on the wrong foot with your internet presence can take a really long time for you to rectify, which will be costly and frustrating. But there’s no need to panic about …
Golang hosting
Go, also referred to as Golang, is an open-source, statically typed programming language. It was developed by Google for simplicity, high performance, efficiency and readability. The reasons for its development are rooted in a desire to simplify the more complex codebases within Google. The fact that this language seemingly has two names can be confusing, …
Factors to Consider About Reseller Hosting in the UK
The internet is one of those things that are always changing and evolving, and every so often, someone comes up with an idea that will truly revolutionise the online world. Easy to build web packages from places like WordPress are just one example of this. If you’ve got the next great idea that will transform …
Popular Ideas for Domain Registration in the UK
Whether you’re planning on starting a business, writing a blog or if you’re looking to secure a corner of the internet for future work, you’ll want to register your domain in the UK. This is the process of acquiring a domain name, which is a vital step in the creation of your online presence. Your …
A Beginners Guide to Web Hosting
If you’re planning on setting up your own website, then you’ve probably heard about web hosting. Web hosting is the service that platforms offer to host your website on the internet. And if you’re new to the world of websites and having an online presence, it can be tricky to know exactly what web hosting …
What our clients say
Everything is fine, thank you. The queries I had were dealt with in a prompt, professional and truly friendly manner! I have never experienced such superb service from any other supplier!
You guys and Catalyst2 are awesome!
