Enabling TLS on Common FTP Software

From Hostek.com Wiki
Jump to: navigation, search

Summary


In today's world with a high magnitude of scripts automatically set to sniff for password data, there is a high demand for always using https on web sites. In the same way, we believe FTPS should be enforced for all FTP transactions.

In this wiki we go through the steps to enable FTPS/TLS on popular and less common FTP clients.


Enabling TLS on Popular FTP Software


FileZilla

  1. Open your FileZilla client, then click 'File'->'Site Manager'.
  2. In the Site Manager window, click 'New Site'.
  3. Input the FTP server information from your service's welcome e-mail.
  4. Under 'Encryption', select the 'Require Explicit FTP over TLS' option from the drop-down.
  5. Change the 'Logon Type' to 'Normal'.
  6. Enter your FTP account's 'Username' and 'Password'.
  7. Click 'OK' to save this connection.
  8. To connect, open 'Site Manager', or click the drop-down arrow next to the 'Site Manager' icon.


Please note: FileZilla does not trust any SSL certificate as valid automatically, even when the SSL certificate was signed by a trusted source (as our certificate is). The developers of FileZilla believed that it is up to individual users to decide if they will accept the certificate.

You can safely accept the the certificate warning message you receive.

Fz tls b.png


WinSCP

  1. Open the WinSCP client
  2. Create a new site or edit an existing site
  3. Change the File protocol to "FTP"
  4. Change the Encryption to "TLS Explicit encryption"
  5. Change the Host name to your domain (Example: yourdomain.com)
  6. Change the Port number to 21
  7. Change the User name to your FTP username
  8. Change the Password to the password that corresponds with your FTP username
  9. Click the Save button
  10. Click the Login button to connect

Below is an image of the WinSCP Session window for reference:

Winscp-ftp-tls-setup.png

Adobe Dreamweaver

Below is an example FTP over SSL/TLS setup for Dreamweaver version 6.0 and above. Dreamweaver versions prior to CS5.5 do not allow for secure FTP. If you are in this situation, you will be required to use an external FTP program such as FileZilla.


DreamWeaverTLS.png


FireFTP

  1. Open up Firefox and click on Tools > Web Developer > FireFTP
  2. Click on the "Main" tab. Set up your FTP connection as usual:
    • Account Name: Choose a name for the connection.
    • Host: URL of your site or the IP of the server. (?)
    • User: Your cPanel username. (?)
    • Password: Your cPanel Password. (?)
  3. Next, click on the Connection tab. Select the "Security" drop-down and then click "Auth TLS".

SmartFTP

  1. Click File > "New Connection"
  2. Set the "Protocol" Field to "FTPS (Explicit)"
  3. Fill in the following fields:
    • Host: URL of your site or the IP of the server
    • User: Your cPanel username. (?)
    • Password: Your cPanel Password. (?)
  4. Click 'OK' to connect.


CyberDuck

On the “Open Connection” dialog, select the “FTP-SSL (Explicit AUTH TLS)” option. See the image below:


Cyberduck.png


CuteFTP

  1. On the main menu, click File > New > FTPS with TLS/SSL (AUTH TLS - Explicit) Site.
  2. Under the 'General' tab, enter the following:
    • Label: Choose a name for the connection.
    • Host Address: Your server IP. (?)
    • Username: Your cPanel username. (?)
    • Password: Your cPanel password. (?)
    • Login method: Normal.
  3. Click the 'Type' tab at the top when the above information has been filled in.
  4. Select 'FTP with TLS/SSL (AUTH TLS - Explicit)' on the 'Protocol Type' drop-down. Leave the rest of the information as default.
  5. Click 'Connect'. When prompted, accept the SSL certificate.


FlashFXP

  1. Click 'Sites' > 'Site Manager'
  2. Click 'New Site' at the bottom left of the new window.
  3. Choose a name for your site and click 'OK'.
  4. Under 'Connection Type:' select 'FTP using Explicit SSL (Auth TLS)'.
  5. In the 'Address' box, type the URL of your site or the IP of the server (either will work).
  6. Enter the following:
    • Username: Your cPanel username. (?)
    • Password: Your cPanel password. (?)
  7. Click 'Apply', then 'Connect'.


WISE-FTP

  1. Click File > Connect.
  2. Click 'New Site' at the top-left.
    • Profile Name: Choose a name for the connection.
    • Server Address: URL of your site or the IP of the server. (?)
    • Username: Your cPanel username. (?)
    • Password: Your cPanel password. (?)
    • Connection type: FTPES (explicit TLS/SSL).
  3. Any other information is optional.



WS_FTP PRO

New Connections:

  1. Click 'Connections' > 'New Connection...'
  2. Choose a name for the connection.
  3. Under 'Connection Type:', select 'FTP/SSL (AUTH SSL)'.
  4. In the 'Server Address:' field, enter in the URL of your site or the IP of the server. (?)
  5. Username: Your cPanel username. (?)
  6. Password: Your cPanel password. (?)
  7. Click Finish.

Existing Connections:

  1. Click 'Connections' > 'Site Manager'.
  2. Click 'Edit' next to the site you would like to modify.
  3. Click 'Advanced', then change the 'Server Type' dropdown to 'FTP/SSL (AUTH SSL)'.
  4. Click OK.


Core FTP LE

  1. Click File->Connect.
  2. Enter the following:
    • Site Name: Choose a name for the connection.
    • Host / IP / URL: Your server IP. (?)
    • Username: Your cPanel username. (?)
    • Password: Your cPanel password. (?)
    • Connection: AUTH TLS.
  3. Click Connect.


FTPSurfer

FTPSurfer does not support FTP over explicit SSL at this time. Please use an alternate FTP client.

Expression Web 4

Expression Web 4 does not support FTP over TLS, however it will support FTPS requests using port 990.

Transmit

On the “FTP” tab, enter in the following:


TransmitFTP.png































Additional Notes

Server information can be found in your Hostek.com welcome e-mail that you receive upon purchasing a service with Hostek. If you are missing this e-mail or any log-in information, please submit a ticket via https://support.hostek.com and we'd be glad to send it once more.