Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

WinInet and Secure FTP

1,275 views
Skip to first unread message

Ronald Sochanski

unread,
Oct 2, 2003, 9:48:54 AM10/2/03
to
Hello. Can WinInet be used to perform secure (i.e., via
SSL) FTP communication?

I ask this question because the Microsoft article "Windows
CE 2.1 Technical Articles, Secure Communications with
Microsoft Windows CE 2.1" (May 2000) states that it can be
done (at least for Windows CE). And yet, none of the
security flags applicable to InternetConnect seem to be
usable for this purpose.

How is it done?!

Thank you!

Ron Sochanski

Eugene Mayevski

unread,
Oct 2, 2003, 4:27:58 PM10/2/03
to
Ronald Sochanski wrote:

> Hello. Can WinInet be used to perform secure (i.e., via
> SSL) FTP communication?

SFTP protocol and FTP over SSL are different things. Which one you need?
SFTP runs over SSH, not SSL. Well, WinInet dosupports none of them...


--
Eugene Mayevski
EldoS Corp., CTO
Networking and security solutions, custom development services
http://www.eldos.com

Ronald Sochanski

unread,
Oct 3, 2003, 10:10:57 AM10/3/03
to
Yes, FTP over SSL and FTP over SSH are two different
things, but both provide secure FTP communication and both
are referred to as secure FTP.

FYI, by definition SFTP is Simple FTP (port 115) and has
nothing to do with secure FTP. Referring to FTP over SSH
as SFTP, although popular and colloquial, is therefore
technically incorrect. FTP over SSL (ports 989 and 990)
is referred to as FTPS.

Concerning my original post, Microsoft's own article
entitled "Secure Communications with Microsoft Windows CE
2.1" states that the WinInet API can be used
for "encrypted FTP" (which must actually be one of the two
(2) types of secure FTP). I'm not making this up - check
the article. This statement prompted my original post.
Thanks for your time.

Ron Sochanski

>.
>

Alun Jones [MS MVP]

unread,
Oct 5, 2003, 3:12:49 PM10/5/03
to
In article <000d01c389b8$2a695600$a101...@phx.gbl>, "Ronald Sochanski"
<Ron_So...@paed.uscourts.gov> wrote:
>Yes, FTP over SSL and FTP over SSH are two different
>things, but both provide secure FTP communication and both
>are referred to as secure FTP.

Secure FTP is FTP that has been secured. It is not SFTP as the SSH folks
define it, because SFTP is not related to FTP.

>FYI, by definition SFTP is Simple FTP (port 115) and has
>nothing to do with secure FTP. Referring to FTP over SSH
>as SFTP, although popular and colloquial, is therefore
>technically incorrect. FTP over SSL (ports 989 and 990)
>is referred to as FTPS.

Again, only colloquially. There has been no assignment of URI by the IANA,
partly because FTP over SSL is only defined in an IETF draft document, not
an RFC. The IETF appears to be dragging its collective heels on issuing the
draft as an RFC, because it's gone over a year without modification, and has
many implementations already, but is still not approved as an RFC. I
haven't a clue why. Finally, port 990 (and by extension, 989) is deprecated
for implicit FTP over SSL / TLS - you should use _explicit_ setting of FTP
over SSL / TLS using the "AUTH TLS" command.

>Concerning my original post, Microsoft's own article
>entitled "Secure Communications with Microsoft Windows CE
>2.1" states that the WinInet API can be used
>for "encrypted FTP" (which must actually be one of the two
>(2) types of secure FTP). I'm not making this up - check
>the article. This statement prompted my original post.

There are a lot of things that make it into documentation that never make it
into code, and / or never make it onto any other devices or platforms. For
instance, there was an SSL interface that you could use with Winsock on
Windows CE. That disappeared, and never made it onto regular Windows.

Alun.
~~~~

[Please don't email posters, if a Usenet response is appropriate.]
--
Texas Imperial Software | Find us at http://www.wftpd.com or email
1602 Harvest Moon Place | al...@texis.com.
Cedar Park TX 78613-1419 | WFTPD, WFTPD Pro are Windows FTP servers.
Fax/Voice +1(512)258-9858 | Try our NEW client software, WFTPD Explorer.

Eugene Mayevski

unread,
Oct 6, 2003, 4:02:46 AM10/6/03
to
Ronald Sochanski wrote:

> FYI, by definition SFTP is Simple FTP (port 115) and has
> nothing to do with secure FTP.

When you say "by definition" please specify the source of the definition .

SFTP is widely used for SSH-related file transfer protocol, which is not
FTP.

Naveen Kumar TV

unread,
Oct 7, 2003, 2:29:03 AM10/7/03
to
hi,
i have solution for your problem..but u have to use third
party [Open source executable ] software to do so..

Its called stunnel[www.stunnel.org]

You can use this as port forwarding and encryption tool
[openssl]

its got config file like this
accept=21
connect=servername:443

it svery simple..i have made use of this for mapping my
online storage account to windows drives

Regards
Naveen tv

>.
>

Eugene Mayevski

unread,
Oct 7, 2003, 3:53:27 PM10/7/03
to
Naveen Kumar TV wrote:

> hi,
> i have solution for your problem..but u have to use third
> party [Open source executable ] software to do so..

FTP over SSL requires explicit support from SSL client. It is not
possible to use STunnel with explicit SSL in FTP.

0 new messages