[Brad]

As the title implies, I'm wondering what is the suggested most secure way of transferring files. My site was recently hacked and so am looking at every possible aspect of security in the hopes of avoiding future attacks.

Thanx!

[Big Dan]

I use sftp.

[MikeDVB]

sFTP or FTPES, both are very secure. I would avoid regular FTP at all costs unless absolutely necessary - if I did use standard FTP I would make sure to change my FTP password immediately after finishing using it.

[stocktrader]

I don't know much about this. Are you saying that if I use an FTP client at home (I use WS_FTP) and don't use any kind of security other than a user/password then I have a big security risk?

[fshagan]

My understanding is that FTP sends the login name and password in "plain text", so a hacker can "sniff" both at any point between you and your account.

sFTP or FTPES encrypt the login and password so a hacker can't easily steal it.

You might look at using FileZilla, http://www.filezilla.com ... it easily switches to using sFTP, and works well.

[Adam]

Brad, on 19 March 2011 - 12:38 PM, said:

As the title implies, I'm wondering what is the suggested most secure way of transferring files. My site was recently hacked and so am looking at every possible aspect of security in the hopes of avoiding future attacks.

Thanx!

I would definitely use SFTP to transfer your files. I would also look into using CloudFlare. It doesn't work for everyone, but most people who use them are happy with their service. I mean, it is free (at least the basic plan is). I use it on lrastart.org and it has done wonders.

[MikeDVB]

I would suggest FTPES over sFTP simply because you don't need to use SSH and the FTP server will chmod your files for you on FTPES