Both the ftp Guardian server and client wrappers were designed to closely
follow the current specifications for SSL based secure ftp protocol. They
are, therefor, functional with other secure ftp products on the market. The
server wrapper will work with most commercially available secure clients.
The client wrapper will work with most secure servers currently available.
The ftp Guardian system is, naturally, designed to work especially
well together. Certain options of the client and server are available only
when used together. The feature list, below, indicates which options are
functional in general use, and which are functional when paired with the
respective ftp Guardian component.
The ftp Guardian client and server were written and compiled in native C/C++
(not java!). As such, their performance is the highest possible. This can
be particularly crucial when considering the added CPU overhead required
for SSL encryption/decryption. The wrapper archetecture optionally permits
the encryption/decryption to be performed on a separate machine from the
actual ftp server.
As with any SSL based server, ftpgs requires at least one pem format certificate
(one is included with the distribution). Optionally, a certificate store
may be loaded by ftpgs. In this configuration, only clients whose certificate's
CA is within this store are permitted access to the ftp server. In this way,
the ftp Guardian system can provide the highest level of security available
with an SSL based system.
V1.1 Window's Service
A Window's service version of the server wrapper is included with the latest
release. After installation, it is controlled via the Window's service control
manager (SCM).
The service version reads the same input files as the user interface version
of the server wrapper. The user interface version is normally used to configure
these files. The input data file can also be edited directly.
Features:
-
Compiled from native C/C++ for maximal performance (no java interpreter).
-
ftpg server can be configured for clients without certs, or in high security
mode where clients are required to have a certificate whose authority resides
within the server's store.
-
ftpg server can be configured to require encrypted data channel or in 'auto'
mode allowing the client to specify
-
ftpg client can be configured to use encrypted or 'clear' data channel.
-
ftpg server permits port ranges can be specified for both passive and 'port
command' data transfers (user's client specifies passv transfer if desired)
-
ftpg server permits logging to both console and files.
-
ftpg server can be configured for 'Auto Start' (user interface intervention
not required) as a Windows's service
-
ftpg server can be obtained in either single or multiple instance licensing.
In multiple instance mode, there is not theoretical limit to the servers
that can be protected (each instance has its own listening port).
-
New with V 1.2: Server distribution includes a Window's service version and a remote client for controlling the service.
|
