Switching From FTP To SFTP

FTP recently turned 40 years old. It is a well-known way to get files from the desktop to the server. It has served us well over the years. Once indispensable, it is time to abandon it whenever possible. Every Linux (and Mac OS X) based server has a better alternative right out of the box: SSH File Transfer Protocol, or SFTP.

There is essentially only one reason to keep using FTP:

Everybody knows about it.

There are many reasons to stop using FTP:

• You need to open up 2 more ports (20 and 21) on the server;

• It frequently disconnects (often by server design);

• It is frequently bandwidth throttled (often by server design);

• It is frequently user-limited;

• It requires installing and configuring more software (usually Pure-FTPd);

• It requires a completely second set of user management;

• It is insecure.

 All of these downsides for little gain.

Like stated before, if you are using a Linux-based server, and you have shell access, then you have SFTP access. SFTP is a subset of OpenSSH effort, the go-to SSH server for just about every system, so you can expect it to be always be available, with no additional configuration. Every major Linux distro as well as Mac OS X has it ready out of the box. You do not need to do a thing to use it.

Even if you have FTP set up, you should migrate to SFTP for your normal use. Most FTP clients have SFTP support built-in. Here is how to change FileZilla to use SFTP:

You will get the immediate benefit of a secure connection. Educate your clients with shell access that they could also be enjoying the benefits of secure connections.