Page 1 of 1
Security Advice
Posted: Sat Sep 17, 2005 10:57 am
by Rikuk
I'm currently writing a program that accesses my personnel website using the FTP user Lib to download load a text file (user name/password included in the code), how safe is this?
Rik
Posted: Sat Sep 17, 2005 11:07 am
by Num3
Well a packet sniffer can read all TCP/IP traffic, and the FTP protocol is a plain text.
If someone sniffs the ftp packets they can get your account username / password without any trouble
Maybe you should use HTTP for downloading the file (no user/password is used here) and some sort of PHP script (on the server side) for uploading information...
This way you are not sending any kind of personal data relating to you!
Posted: Sat Sep 17, 2005 4:46 pm
by Rikuk
Thanks is there a set of commands for HTTP download or do I need a Lib.
Rik