FTP

I have made a program that uses FTP to upload files to a website and the username and password is within the program (not shown to the user).
My friend said: The details of the FTP connection (username+password) aren't encyripted, therefore users would be able to retreve the username+password..

Is this true? -i wouldn't have thought so.

Yes... if someone is listening to network traffic somewhere between the ftp client and server. It's true for everything, even e-mails. So don't send really important stuff using email, if you do, encrypt it.

SSL+FTP works or SFTP (not FTP) works as well.
You can do a hell of a lot with http and https too.

P.S. ur gay

srsly, https would be better for something like that

They could also run strings on the program to get the details. Security by obscurity is no security.

Obviously if a program can do something (such as uploading a file), then the user can always figure out how the program does it (e.g. which password it uses) using a disassembler or other tools, and manually do the same. There is no way to secure against this.

use scp

sftp > scp

LISP

ur gay

beware the army of 12 year old autistics

Don't change these.

Name:		Email:
Entire Thread Thread List