What's the most secure FTP client?
 

I recently started using Filezilla and have had a record number of websites hacked. I had to stop saving the login information in the site manager. It sucks because I have so many websites and I switch back and forth a lot. Having to manually enter the ftp credentials suck!

Filezilla is free so the theory holds true that you get what you pay for. What ftp software do you use?

Its the protocol that's insecure, not the program. Switch to sftp or ftps.

Total Commander :thumbsup
- versions above 7 have master password that encrypts your FTP passwords

FileZilla protable
- does not have the protection, but since it's not installed at default path most trojans won't be able to locate it and extract passwords

you're right, but lately there were some tojans that was stealing your ftp passwords from config files and registry entries for FileZilla, Total Commander and other ftp clients...

I use WSFTP never had a problem with it

You work for CIA bro?
Just setup your IP as only one which can log in to your server via ftp...

or use a knock script if you have dynamic ip. :thumbsup

WinSCP

http://winscp.net/eng/index.php

+1.Using this shit for years and never been hacked.

Is it bad that I use Dreamweavers ftp? I thought I would see some others lol ={. I recently started using coffeecup ftp for binary files as Dreamweaver wont support it. Actually you can change the ftp mappings back and forth, but that seems like a pain.

Fetch with sftp is good, you need a mac tho

filezilla is working well for me, never had a problem with hacked sites. if your sites are hacked, you have to check your scripts or ask your hosting :2 cents:

I already did that and all conclusions pointed to my FTP client. I ran a split test just for shits and grins and saved one site in my FTP site manager and removed the other. I changed both passwords and waited. The server with the saved login info through Filezilla was hacked within 3 days. The one that I didn't save in the site manager was not hacked. They were both running the exact same software. Same scripts, database, etc. I just mirrored them.

Ultimately it may not be the FTP, but it sure does look as though it is.

you must have pc full of viruses or keyloggers because i cant see how using filezilla alone would guarantee so many hacks..

i stoped using TC after years becasue the way it upload files is travesty- no multi threads..try uploading for example phpmyadmin with TC and filezilla.

It is also a possibility that it is your PC. not that actual program. You might have some kind of keyboard logger on there or as someone else mentioned, a trojan that reads ftp info. Or someone is sniffing your network, is your wireless router secure? so on so forth. It is not likely the program itself.

sftp or scp

Total Commander is good with master password protection, so they can auto log on your sites, but not 100% protection...

I use SmartFTP and it works well. I've had some problems once, but it's nothing to do with the FTP program itself. It all comes to the protocol and the PC setup you have. A good always up to date internet protection program is a must in my opinion, i recommend Kaspersky and NoScript for Firefox.

You should really setup an FTP site that requires more than just a password. You can specify ident@ip + password for each account, and also set it to use AUTH TLS for added security.

If you do setup an FTPd, you could also put it in an encrypted hidden container on the server, so even the sys admins (...or anyone, y'know, "seizing" your box) would have no idea it's there, and even if they found it, everything inside it is encrypted.

Also maybe a program like Win Patrol could help to see what programs on your PC are doing and stop certain actions before they're executed.

Another idea might be to install a VMWare instance with Ubuntu or Linux Mint or whatever, then use a Unix FTP program. Nothing on your computer is going to be smart enough to see into your virtual OS and hack your unix! :) Maybe try LFTP http://lftp.yar.ru/

:2 cents: agree, excellent choice, I'm also using

I think you are trojaned.