[clue-tech] sftp or ftps?

Brian Gibson bwg1974 at yahoo.com
Sun Feb 11 11:31:05 MST 2007 

Here's an interesting blog post on the economics of transferring data showing that as your data size outgrows your bandwidth, transporting media is cheaper and even faster than transferring over the wire.

http://www.codinghorror.com/blog/archives/000783.html

----- Original Message ----
From: Angelo Bertolli <angelo at freeshell.org>
To: CLUE tech <clue-tech at cluedenver.org>
Sent: Saturday, February 10, 2007 9:38:52 PM
Subject: Re: [clue-tech] sftp or ftps?

On Fri, Feb 09, 2007 at 08:17:34PM -0700, David L. Anselmi wrote:
> Angelo Bertolli wrote:
> >David L. Anselmi wrote:
> [...]
> >Yeah, that's what I was thinking.  I like rsync, but I the issue really
> >is with not encrypting the data itself.  The data transfers are
> >predicted to average about 3 TB per day, and some of the clients who
> >want this data have said they cannot handle their portion with the
> >encryption.
> 
> Really?  270+ Mbps all day long?

I know, I hope someone is really making sure we have this speed.  It's satellite data that we act as a repository for, so that the diferent science groups in our project don't have to try to download their own copy each from the data centers.  Of course, the whole scenario might change before this thing ever gets off the ground.  But I promised I'd "ask around" to get opinions on encrypted passwords without encrypted data.

> >I think we'll probably just end up using anonymous FTP with IP
> >restrictions.  It seems like the best choice to me considering the
> >nature of what's being transferred and doesn't violate any policies
> >like:  1) passwords must be encrypted, 2) users much each have
> >individual logins.  This way no passwords are being passed, but we're
> >still keeping random users or robots from eating up bandwidth.
> 
> Yes, it shouldn't be any harder to manage an access list of IPs vs a 
> list of users.

I'm glad you agree, I think I've convinced them to do this.  The really crazy thing is I think we've done this 10 times already, and every time we come up with the same solution:  use IP addresses.  Of course that's because of the policy of "no shared logins" (user name and password must be unique to an individual), but it seems to help in this case too.
 
-- 
The chief danger in life is that you may take too may precautions.
        -- Alfred Adler
_______________________________________________
clue-tech mailing list
clue-tech at cluedenver.org
http://www.cluedenver.org/mailman/listinfo/clue-tech





 
____________________________________________________________________________________
No need to miss a message. Get email on-the-go 
with Yahoo! Mail for Mobile. Get started.
http://mobile.yahoo.com/mail

More information about the clue-tech mailing list