Advanced
Mailing List Archive

Mailing List Archive

  1. Home >
  2. OpenSSH>
  3. Dev: Page 3
1 2 3  View All
Re: Deprecation of scp protocol and improving sftp client [ In reply to ]
mstone at cs
Aug 7, 2020, 6:32 AM
Post #51 of 52 (388 views)
Permalink
On Wed, Aug 05, 2020 at 11:03:41AM +0200, Jakub Jelen wrote:
> At this moment, downloading files using sftp works the same as with
> scp:
>
> sftp localhost:/tmp/scp.c /tmp/tmp
>
> Extending sftp to work the same way for uploading files to avoid the
> above mess should be also pretty easy and would cover the most common
> use cases.

yes, but in 20 years nobody has gotten around to it. :)

> Getting complete feature-parity with scp would be another feat though.

I don't think many people want *complete* feature parity, and that's
probably impossible to do without reintroducing the same security issues
as scp. What would make sftp a viable replacement is simply supporting
sending and receiving files with optional permission preservation and
recursion (99.9% of what scp is used for). sftp is most of the way
there, but if someone can't send a file with a simple sftp invocation
they'll just keep using scp.

_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev@mindrot.org
https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev
Re: Deprecation of scp protocol and improving sftp client [ In reply to ]
rapier at psc
Aug 10, 2020, 10:33 AM
Post #52 of 52 (388 views)
Permalink
On 8/5/20 1:23 AM, Ethan Rahn wrote:
> It seems that there are a few camps here:
>
> * The scp power users - this camp believes that scp supporting backtick
> notation is fine and that running arbitrary commands is a perfectly fine
> thing to do.
> * The restricted shell users - this camp believes that scp supporting
> backtick may not be the best, and there are various restricted shells which
> can prevent this. Power users may belong to this camp.
> * The novice users - this camp is surprised to find that scp can be used to
> run commands. Once they understand that the server runs "scp -t" it makes a
> little more sense.


Sorry to come into this late but there is a very large camp that simply
doesn't care. They use scp because they have to in order to transfer
files due to requirements placed on them by admins. They aren't
concerned about security nearly as much as they just want to get their
files from A to B so they can do their work. For these people scp is the
default because that's what all the instructions and examples are based
on. It's a big part of the reason why I developed hpn-ssh. We couldn't
get the users to change their behaviour and they kept complaining about
slow transfers.

In short - for a whole lot of users scp is just a component of their
workflow. They don't really think about it unless it's causing problems.

So I'm all for getting rid of scp as long as you can get sftp to work in
exactly the same way. Then you just get replace scp with a symlink to
sftp. Which is far easier said than done.
_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev@mindrot.org
https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev
1 2 3  View All

©2024 GT.net. A Gossamer Threads company.
5th Floor, 455 Granville St., Vancouver, BC V6C 1T1, Canada | Legal