Hi all,
Thanks for your helpful comments.
yafc is working fine for my use-case, so please feel free to close this
ticket.
On 11/01/16 22:24, Brian May wrote:
> I would recommend another protocol, e.g. SFTP over SSH using Kerberos.
That's certainly an interesting thought.
Our software currently doesn't support data transfers via SSH, but we
might add that in the future, and supporting Kerberos-based
authentication would be good.
On 12/01/16 00:08, Russ Allbery wrote:
> My recollection is that it doesn't actually do encryption of the data
> transfers, which is obviously something of a problem.
For many use-cases, protecting the control channel turns out to be
sufficient: the data is not really that secret. However, we want to
make sure it isn't deleted by an unauthorised person and the uploaded
data is correct. I'll double-check what security level is being enforced.
Thanks again,
Paul.
