why would using "sftp" require disabling "vsftpd"?
poma
pomidorabelisima at gmail.com
Fri Feb 7 00:14:05 UTC 2014
On 06.02.2014 23:38, Robert P. J. Day wrote:
>
> again, reading RHEL 7-beta docs and here:
>
> https://access.redhat.com/site/documentation/en-US/Red_Hat_Enterprise_Linux/7-Beta/html/System_Administrators_Guide/s1-ssh-configuration.html
>
> one reads:
>
> "For SSH to be truly effective, using insecure connection protocols
> should be prohibited. Otherwise, a user's password may be protected
> using SSH for one session, only to be captured later while logging in
> using Telnet. Some services to disable include telnet, rsh, rlogin,
> and vsftpd."
>
> never having used sftp before, i'm confused ... isn't sftp simply a
> secure ftp client? and if so, why would one want to disable vsftpd? i
> would still need an ftp server, would i not? can someone clarify what
> that passage is saying? thanks.
>
> rday
>
Stop reading RHEL7 documentation!
You confuse yourself.
Learn to distinguish a program(client and server) from a protocol!
Secure File Transfer Protocol
/etc/ssh/sshd_config
Subsystem sftp /usr/libexec/openssh/sftp-server
man 5 sshd_config
man 8 sftp-server
man 1 sftp
5+8+1=13!
poma
More information about the users
mailing list