[Novalug] FUSE - secure?

Roger W. Broseus Roger@just.net
Mon Jun 4 12:34:33 EDT 2007


Are file transfers with FUSE secure?

At
  http://lukasz.szmit.eu/2007/05/23/servage-webdrive-using-fuseftp/
the use of fuseftp is advocated for accessing a "web drive" as, e.g.,
Servage.net. The procedure includes writing one's password to .netrc in
/root and making it chmod 600. (Also relevant may be
  http://www.mavetju.org/unix/netrc.php)

My question: does this create a security hole?

More basic: is ftp inherenetly insecure? Isn't the content of data
transmitted in "clear-text" and not encrypted?

Alternatives for (apparently) secure file transfer via "ftps" are
available at Servage and I've succeeded in transferring files with
kasablanca during experimentation to "test" hosting at Servage. (They do
not have SSH available.)

-- 
Roger W. Broseus




More information about the Novalug mailing list