Changes between Version 43 and Version 44 of SftpFrontend


Ignore:
Timestamp:
2010-06-22T20:10:28Z (14 years ago)
Author:
davidsarah
Comment:

heading sizes

Legend:

Unmodified
Added
Removed
Modified

  • SftpFrontend

    v43 v44  
    44
    55
    6 === Security ===
     6= Security =
    77
    88The security of the connection between the SFTP client and gateway is dependent on the !PyCrypto library, which has not been reviewed to the same extent as the pycryptopp library that we use elsewhere in Tahoe-LAFS. In particular, the AES implementation in !PyCrypto is known to be vulnerable to timing attacks which could potentially, depending on the situation, allow a remote attacker to break the encryption protecting the SFTP connection between your SFTP client and the Tahoe-LAFS gateway process that is acting as SFTP server. Therefore we do not recommend that you rely on the confidentiality or authentication provided by this SSH connection in the current release.
     
    1313
    1414
    15 === General compatibility issues ===
     15= General compatibility issues =
    1616
    1717Before uploading a file to a Tahoe filesystem, the whole file has to be available. This means that the upload can only start when the file has been closed in the SFTP session. Particularly when writing large files, the client may time out between sending the close request and receiving the response (ticket #1041). This is known to be a problem for at least the WinSCP client, which has a default close timeout of 15 seconds. In the case of WinSCP this can be worked around by setting WinSCP -> Connection -> Timeouts to 6000 seconds (the maximum allowed); other clients with this problem may have similar settings.
     
    2626
    2727
    28 === Unicode filenames ===
     28= Unicode filenames =
    2929
    3030The SFTP frontend encodes all filenames as UTF-8 when communicating with the client. Support for displaying and copying non-ASCII filenames is likely to vary between clients. If you are using a filesystem that represents names as UTF-8 (including via sshfs), then it should just work, but please report your experience with this.
     
    3535
    3636
    37 === Performance ===
     37= Performance =
    3838
    3939The SFTP frontend currently performs no caching (sshfs does cache, but only for 20 seconds with the default settings). Some applications assume that file operations have relatively low latency, and may have very poor performance when working directly with a Tahoe filesystem. In this case it may be better to copy files to a local filesystem and work on them there, then copy back any changes. Note that just browsing a directory may cause some apps to perform many unnecessary reads or attribute checks of files in that directory.
    4040
    4141
    42 === Specific clients ===
     42= Specific clients =
    4343
    4444== sshfs ==