This post is the last in our blog series on securing your SFTP server. It’s time for some concluding remarks.
Firstly, never relax! Maintaining security is an ongoing task, and it is important to be vigilant – regularly checking logs, testing your security measures, and ensuring security patches are applied as they become available. Suspicious activity needs to be acted on immediately.
Secondly, be aware that many successful attacks stem from social engineering, or from disgruntled employees or […]
A common request that we get is how to configure CompleteFTP Enterprise Edition so that it acts as a direct proxy for another server. This is particularly common for users who need an encrypted front-end to a legacy FTP server, for example. With CompleteFTP it’s possible to have authentication handled by the remote server so that it’s unnecessary to set up users in CompleteFTP.
To do this you first need to configure a […]
Secure file servers such as CompleteFTP support many protocols, including FTP, FTPS, HTTP, HTTPS, SCP and SFTP. Previous posts have explained various techniques that help protect your server against attackers. These techniques have been largely generic, and apply across all protocols. This post will focus on the SFTP and SSH protocols, and examine protocol-specific settings that should be enabled to make your SFTP server as secure as possible.
The first tip has already been mentioned, but it […]
Parts 1, 2, and 3 of this series explained techniques to prevent attackers from getting access to your SFTP server’s machine, and features such as IP filtering and auto-banning that make it more difficult for them to obtain an unauthorized login.
There are some other simple configuration changes that can be made that make your server considerably more secure.
The most important group of changes is at the protocol level. Quite simply, if a protocol […]
Our previous tip for securing an SFTP server involved utilizing the resources of the corporate network to bar intruders, primarily via the corporate firewall.
Now, it’s time to look at the SFTP (or FTP) server itself. Of course, as mentioned in tip 1, it is essential to keep the server software up-to-date to ensure the latest security patches are installed. But once that’s done, what’s next?
Well, now we’ve done our best to keep intruders […]
The first tip in this series on securing your SFTP (and FTP) server was to keep your operating system and server software up-to-date with the latest security patches.
Next, make sure you make full use of your corporate firewall. The best way to ensure that your server is never hacked is to make sure hackers never get near it, and that is best accomplished by keeping intruders out of your corporate network. This means keeping […]