Do you have a question? Post it now! No Registration Necessary. Now with pictures!
- Posted on
- File transfers with post-transfer encryption
- Scott McGerik
August 26, 2004, 3:43 pm
rate this thread
file to my local server the file is immediately encrypted with GnuPG?
That is, as soon as the file contents are received, they are passed to
a program that encrypts and then writes them to disk. I am using OpenSSH
3.8 and prefer a system that allows the remove users to use scp or sftp
and to be transparent to them.
A constraint is that the file contents must never be written to disk in
plaintext as this server resides in a DMZ and the contents of the files
are private health information. The goal of this is to limit the exposure
of our production servers by situating them behind a firewall while at
the same time allowing our trading partners to deliver files to us in a
more secure manner. Our production server would retrieve and remove the
files from the DMZ server. There would be no holes in the firewall from
the outside world.
Pointers to FAQs, books, and other resources are appreciated.
Re: File transfers with post-transfer encryption
That is my preferred approach, that is, have the remote users encrypt
the file before sending it with scp. And, I may have to push for that.
However, I have been also given the constraint that this file transfer
process be as "simple" as possible.
- » ssh on command line: force using a group size (prime size) of 1024 (and no...
- — Newest thread in » Secure Shell Forum