FTPS (FTP over SSL)

The traditional FTP protocol sends commands and data in “the clear” over the network/internet. This FTP data could be intercepted by an attacker, which could then be viewed and altered before sending it onto the receiver. If you are sending sensitive data over the internet, then you may want to consider the FTPS (FTP over SSL) protocol for securing data.

FTPS creates an encrypted tunnel between two computer systems and will protect against the following attacks:

IP spoofing, where a remote host sends out packets which pretend to come from another, trusted host
IP source routing, where a host can pretend that an IP packet comes from another, trusted host
DNS spoofing, where an attacker forges name server records
Interception of cleartext passwords and other data by intermediate hosts
Manipulation of data by attackers in control of intermediate hosts

FTPS uses a combination of asymmetric (public key) cryptology and symmetric cryptology to provide strong encryption and optimal performance.

Both the server and the client can be authenticated (trusted) through the use of X.509 Certificates. In other words, certificates will help ensure that each party is truly who they say they are.

GoAnywhere can connect to FTPS servers for sending and receiving files. These servers can be pre-configured in GoAnywhere and selected through simple drop-down menus.

Sample screenshot of a FTPS definition in GoAnywhere:

Standards Support for FTPS

GoAnywhere supports the following standards for FTPS.

SSL Versions

SSL 2.0
SSL 3.0 (also known as TLS 1.0)

Connection Types

Explicit SSL (AUTH SSL and AUTH TLS)
Implicit SSL

Ciphers (Symmetric Encryption Algorithms)

AES-128
AES-192
AES-256
DES
RC4
Triple DES (DESede)

Authentication and Key Exchange Algorithms

Diffie-Hellman
DSA
RSA

Hash Algorithms

MD5
SHA1

Certificate Key Store Formats

JKS (Java Key Store)

GoAnywhere can be installed onto IBM System i, Windows, Linux and UNIX platforms. System i is also referred to as iSeries, as400, as/400 and i5.