File xfer from DMZ to internal network - Any recommendations?

File xfer from DMZ to internal network - Any recommendations?
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 Microsoft Applications Security    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
File xfer from DMZ to internal network - Any recommendations? Trust No One® 10-15-2008
Posted by Trust No One® on October 15, 2008, 3:32 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
Hi Folks,

I'm after recommendations for software that will allow secure transfer of
files and folders from Windows servers in a DMZ to hosts (windows) on the
internal network.

While there are plenty of open source clients (puty, Winscp etc) for the
Windows platform there seems a distinct lack of a server product, such as
OpenSSH on Unix. OpenSSH for Windows seems a bit messy as it runs under
Cygwin and no updates have been done since 2004.

I'm open to purchasing a commerical product. Ideally it should offer Active
Directory and/or LDAP integration, encryption, and allow scripting of file
transfers. It would be very useful if it was compatible with existing
windows clients such as putty, Winscp and filezilla.

Can anyone recommend such a product or point me to a resource that compares
the available offerings in this area?

tia

--
Peter <X-Files fan>



Posted by =?Utf-8?B?QW50ZWF1cw==?= on October 17, 2008, 4:59 pm
If you were  Registered and logged in, you could reply and use other advanced thread options

Zebedee does this quite well, and with pre-shared keys is highly secure. You
need to redirect port 139 (or 445) via a loopback adaptor to achieve a
filesharing link, as the port itself cannot be changed.

Other alternative if the objective is manual getting of files, is Filezilla
Server and client in TLS mode.

"Trust No OneĀ®" wrote:

> Hi Folks,
>
> I'm after recommendations for software that will allow secure transfer of
> files and folders from Windows servers in a DMZ to hosts (windows) on the
> internal network.
>
> While there are plenty of open source clients (puty, Winscp etc) for the
> Windows platform there seems a distinct lack of a server product, such as
> OpenSSH on Unix. OpenSSH for Windows seems a bit messy as it runs under
> Cygwin and no updates have been done since 2004.
>
> I'm open to purchasing a commerical product. Ideally it should offer Active
> Directory and/or LDAP integration, encryption, and allow scripting of file
> transfers. It would be very useful if it was compatible with existing
> windows clients such as putty, Winscp and filezilla.
>
> Can anyone recommend such a product or point me to a resource that compares
> the available offerings in this area?
>
> tia
>
> --
> Peter <X-Files fan>
>
>
>

Posted by Trust No One® on October 18, 2008, 8:56 am
If you were  Registered and logged in, you could reply and use other advanced thread options
Anteaus wrote:
> Zebedee does this quite well, and with pre-shared keys is highly
> secure. You need to redirect port 139 (or 445) via a loopback adaptor
> to achieve a filesharing link, as the port itself cannot be changed.
>
> Other alternative if the objective is manual getting of files, is
> Filezilla Server and client in TLS mode.
>
Hi,

Thanks for the reply. I didn't realise there was a Filezilla Server, this
must be a relatively recent development - though it has been a while since i
visited the Filezilla website.

Since my post I've stumbled across FreeSSHD. This looks very promising but
while free is not Open Source, which is why Filezilla appeals.

There is also the option of compiling Portable OpenSSH under Cygwin on
Windows, but reading through the procedure made my eyes glaze over :)

I'll have a look at the options you suggest.

Many Thanks!


--
Peter <X-Files fan>



Posted by =?Utf-8?B?QW50ZWF1cw==?= on October 19, 2008, 8:40 am
If you were  Registered and logged in, you could reply and use other advanced thread options
At the time I set this up, FreeSSHD wasn't around. I don't think. I chose
Zebedee because it's a native Win app, whereas the SSH servers I could find
relied on Cygwin, which to me is a bit of a duct-tape solution.

One thing I can say is that on NT-based Windows the Zebedee process is
highly stable, I don't recall ever having it bug out. Provided the physical
link is OK it gives rock-solid connections too. It's admittedly not the
easiest thing to setup as the config-file settings don't behave quite as you
would expect them to, you need to understand their particular brand of
quirkiness.

FreeSSHD might possibly be a better choice, but of course the only way to
find out is to do some fairly lengthy testing.

"Trust No OneĀ®" wrote:

>
> Thanks for the reply. I didn't realise there was a Filezilla Server, this
> must be a relatively recent development - though it has been a while since i
> visited the Filezilla website.
>
> Since my post I've stumbled across FreeSSHD. This looks very promising but
> while free is not Open Source, which is why Filezilla appeals.
>


Similar ThreadsPosted
Re: MS IIS Internal IP Address/Internal Network Name Disclosure Vu December 12, 2005, 1:51 pm
File xfer security December 10, 2007, 2:30 pm
VPN through internal network October 14, 2008, 5:58 am
Internal Network Access Thru VPN October 18, 2005, 11:57 am
Network Discovery | BSR 64000 on Internal IP? May 10, 2006, 12:35 am
Deploying desktop firewalls in the internal network ? August 11, 2005, 3:19 pm
Which is better:let PerimeterServers get anti-virus updates from the Internet or internal network January 11, 2006, 11:54 am
General Recommendations April 25, 2007, 11:47 am
Recommendations for 'Anonymous Surfing' January 27, 2006, 10:08 am
Microsoft Attempts to Quash OSS Recommendations September 1, 2006, 6:26 pm

The site map in XML format XML site map

Contact Us | Privacy Policy