FTP, FTPS and FTPES
The File Transfer Protocol dates back to the early 1970s. At the time, the protocol was concerned purely with transferring files between a client and server. As with other tools, such as telnet, security wasn’t a concern.
Security is a major concern nowadays: sending your FTP username and password to a server in plain text is a really bad idea. Although plain FTP is still in use, most people nowadays use FTPES.
FTPS: implicit security
The first attempt to make FTP secure was FTPS. FTPS uses port 990 instead of port 21 to connect securely to a server. FTPS never became a hit, mainly because the FTP protocol doesn’t define the implicit negotiation used by FTPS. That is, FTP clients are supposed to negotiate the level of security with the server, but FTPS doesn’t do that: it implies the use of TLS. Like plain FTP, FTPS has fallen out of favour.
FTPES: explicit security
The method widely in use nowadays is FTPES. With FTPES (explicit FTPS) the client and server use port 21 to negotiate the level of security to be used. The client can ask the server to switch to an encrypted channel via the AUTH SSL or AUTH TLS command, and after the server has established a secure channel the client can securely send the user credentials.
Confusing lingo
The reason many people are confused about different FTP methods is that it is reasonable to assume that FTPS means secure FTP, in the same way that HTTPS is secure HTTP and IMAPS is secure IMAP. However, when people talk about FTPS they usually talk about FTPES. Here is a quick recap of the differences:
| Type | Port | Notes |
|---|---|---|
| FTP | 21 | Plain text communication between client and server. |
| FTPS | 990 | TLS implied (no negotiation between client and server) |
| FTPES | 21 | Level of security is negotiated between client and server |
What about SFTP?
SFTP is another protocol for transferring files. Other than that SFTP has nothing in common with FTP, FTPS and FTPES. SFTP is short for SSH File Transfer Protocol and is an extension of the SSH protocol. This implies that the client needs to have shell access in order to use SFTP. By default, it uses the SSH port (22).
Featured Blogs
Keep things simple with managed server hosting
One of the first decisions you’ll need to make when choosing hosting for your new website is whether to choose a managed server hosting or DIY server infrastructure. If you’re not sure what the implications of these two choices are, it’s likely you’re going to want some kind of managed server hosting; this is for …
CloudLinux launches CentOS clone AlmaLinux
CentOS Linux’s parent company, Red Hat, caused consternation among many users recently when they announced they would be shifting focus away from CentOS Linux in favour of focussing on CentOS Stream. Shortly after the announcement, CentOS co-founder, Gregory Kurtzer, confirmed he was launching a clone of Red Hat Enterprise Linux, the distro that CentOS was …
IT Solutions That You Didn’t Realise You Needed
If a company wants to achieve prolonged and sustainable success in the modern age, the chances are that it needs to try and incorporate a technical element into their set-up. Since the invention of the computer, corporations have drastically altered the way in which they go about their daily business – the reason for this …
Misconceptions About Web Hosting That Need To Be Dispelled
In times gone by, the world of web hosting was one that was regarded as being mysterious and difficult to navigate, unless you had been provided with the necessary training. This has led to many people, especially those who are not particularly tech-savvy, to be somewhat sceptical of the importance of enlisting the help of …
What are NVMe drives, and should your server use one?
The biggest upgrade you can make to any computer is faster storage. One of the easiest ways to do this is by investing in an NVMe drive. But what exactly is an NVMe drive? And why should you consider purchasing one? Here’s everything you need to know. What are NVMe drives? An NVMe, or non-volatile …
Top ten tips for video calling whilst you work from home
The need for social distancing during the coronavirus pandemic has meant that as many as one in four of us now work remotely. Of course, the need to communicate effectively is still incredibly crucial, and video conferencing has played a vital role in ensuring working teams are all on the same page – even when …
What Questions Should You Ask A Prospective Hosting Company?
The process of trying to find the perfect website hosting company is one which is often drawn out and tiresome. There are various factors which you need to look out for, and it is rare to find one which incorporates all of the elements that you need. Not only this, but all of the firms …
The Hosting Options That Everyone Is Talking About In 2021
It is the start of a new year, and with that comes a renewed desire for companies to push on and improve the amount of success that they are privy to. Some believe that the best way to make this a reality is to upgrade their existing operating systems, so that their technical capabilities are …
Why Have Disaster Recovery Services Seen Their Popularity Soar?
The world of online operations is incredibly complex, and this should come as no surprise – there are various moving parts, and for things to be working smoothly, they all need to align. Whilst, for the majority of the time, operations take care of themselves, it is not impossible for things to go awry. Over …
Cloud Hosting – The Solution Of The Future?
For those of you that are experienced website builders, it will come as no surprise to hear that getting your page online is not as simple as clicking a button. There are various processes which have to be taken care of in order for a successful outcome to come to fruition. Web hosting companies are …
What our clients say
Great real person support – direct phone number, usually the same individual so any problems are handled by the same people. Excellent.