Using SSH Connections - KB Article #1266Related Articles -- 2037
FTP Voyager Secure Edition supports SSH encryption. This option is enabled under "Advanced | Security" for your FTP Site Profile.
When FTP Voyager uses SSH encryption the log will look quite different then a traditional connection. Below is an example of a SSH login.STATUS:> Connecting to "linux.com" on port 22.
SSH Server Version: SSH-1.99-OpenSSH_3.4p1 Debian 1:3.4p1-1
Server --> Client encryption: 192 bit aes-cbc
Client --> Server encryption: 192 bit aes-cbc
Selected public key protocol: ssh-dss Compression: NONE
STATUS:> Login successful
STATUS:> Getting current folder
Current folder: /home
STATUS:> Setting transfer mode to ASCII
STATUS:> Listing contents of: /home
Listing complete: /home
STATUS:> Resolving links
STATUS:> Resolving symbolic link: /home
STATUS:> Resolved 1 link into 1 folder and 0 files
SSH encryption usually uses port 22. This can make traffic through firewalls easier. Make sure nothing is blocking port 22 and the connection should complete.
Using Public/Private Keys For SSH Authentication
FTP Voyager also supports the use of a public/private key pair for SSH authentication. This method is typically used when connecting to Linux systems. To configure authentication using SSH keys, follow the steps below:
- Open the View | Options | SSH Options menu
- Checkbox the "Use public key authentication" option to enable authentication via public key
- Select "Browse" for the Private Key, browsing to the appropriate directory and selecting it - Voyager will automatically find the public key if it is located in the same directory
- If the private key is password protected, enter the password used to protect your private key in the "Password" and "Confirm Password" fields below - otherwise, uncheck the "Use private key password" option
- If compression causes errors when trying to connect or transfer data, the "Use Compression" option can be unchecked
- Click OK
Creating A Public/Private Key Pair
FTP Voyager allows you to create a public/private key pair if one has not already been issued to you. To do so, click on the "Create New Key Pair Files" button and follow the directions below:
- Select the "Key Type" - Unless your server administrator has indicated that you need to use RSA, use the default of DSA
- Select the "Key Length" - If more security is required, select 2048 or 4096 from the drop down list if your server supports it. The longer the key, the slower transfers will be
- Select the "Private Key Password" - This password is used to protect the private key, and should be at least six characters long and alphanumeric
- Select the "Public Key File Format" - This can be set to SSL unless your server administrator requires you to use SSH or OpenSSH
- Enter the location of the Public Key and Private Key - This can be any directory
NOTE: At this time, FTP Voyager does not support configuration of key pairs for individual Site Profiles.