Hi

What does everyone use for secure file transfers of client work? I have dropbox but am wondering if it might be a good idea for me to have a facility which is an integral part of my website which allows clients to upload their work. With Dropbox, I need to set up a specific folder to share with the client before they can save any work to it. Obviously using any other method, before allowing anyone to upload files they would need to login to my site. It therefore seems to be the same kind of process. Just wondered how everyone else views this issue.

Sue

__________________
Gray VA Services - Virtual Business Support
www.grayva.co.uk

Hi Sue, for the most part email suffices for transferring things back and forth, but I don't handle much information that could be considered sensitive. We have an in-house document library, sounds like Dropbox from what you've said, where we can make folders and access points for clients.

I like using my own library though because it's on my own server, and I don't just mean my website. In any case, I prefer to avoid having a third party involved whenever possible.

__________________

I use ciphersend to send/receive encrypted files. I pay about $20 per year for the service. You can post the link on your website, the client then just clicks the link and uploads the file to ciphersend's secure server. You receive an email letting you know you have received an encrypted file which you then download using a password. It's easy to use and lets clients know you are conscientious about confidentiality.

__________________
Virtual Bankruptcy Paralegal
www.bkprep4u.com

Like Tess, I have my own server set up to allow secure file transfers. Dealing in voiceovers in the past, the deliverables were in the neighborhood of 100's of megabytes--far too sizable for email. I have also made use of my customer's FTP servers. They would have to provide me with a set of credentials to use and the address to connect to.

Of course, if you host it yourself on your own server, it pretty much requires a lot more of an investment of your time, etc to keep it running. In my case: I built the thing from scratch, so I don't have any issue maintaining it. For someone who doesn't build/program computers, it might be easier to use a customer's server directly or use a file transfer service like the one Kate mentioned.

I use FilesAnywhere on a daily basis - I just sent the client a link in an email and they can click that to upload their files. It also has a desktop application so you don't have to go online as such to transfer them over to your personal folders.

Some clients use Dropbox but I don't like having to ask people to install something on their PC to enable easy sharing IYSWIM

__________________
Bridie's Typing Services - specialising in transcription services
The professional's choice

FINALLY!!! I have found a home for my question...

I am absolutely stumped when it comes to ftp servers..

I managed to create one in Windows XP (using a tutorial).

So far I have been able to use emails to upload/download files etc but want to know:

What an ftp server is?? I have read numerous articles on the web and still don't understand how it functions i.e. ensuring that my documents are 'securely transmitted'.

How would I connect the 'client upload files area' on my website, directly to my FTP Client in my transcription software (is it even possible)? Btw I use the StartStop transcription universal software...

If you answer this question, I'll google+ your website, follow you on twitter and like your page on facebook... ;o)

kregards

Claud (nova-solutions)

__________________
Nova Solutions... "Your Night, Is Our Working Day"

Being an FTP server means that your computer would be listening (server=listen) for an FTP client wanting to connect. The server would ideally then ask for a username and password to allow the client to connect. The client could then browse anything in the FTP server's allowed download/upload area. That's the overview of what an FTP server does: it just listens for connections, authenticates them, and facilitates the actual transfers.

Now, the bad part. There is no security inherent in an FTP server and its transfers. Even the password is often transmitted insecurely. Now, your easiest way around that may be to make sure that you securely zip up any files you wish to transfer. Make sure to use a long, strong password.

Next, you'll need to have some way to know where your FTP server is, if you are hosting it yourself. Typical home Internet service changes your IP address (your unique identifier online) often. This is the address that FTP clients would need to know in order to find you. You can *buy* a static IP which does not ever change from your provided sometimes, but it would likely be cost-prohibitive. A better solution is to use a dynamic DNS service such as dyndns.com. This type of service allows you to set up a domain (sub-)name for free which is always up-to-date with whatever your current IP address is. So, you might be able to point FTP clients to novasolutionsftp.dyndns.org. You can pay for their service monthly at use your own domain name, btw.

So, the 'client uploads' area on your site would then point to your dynamic domain name, and you would put that domain name into any FTP client, including the one inside your transcription software.

So, FTP is quick and not really fraught with too much complexity, but it is not secure itself. There are such things as SFTP (Secure FTP) and FTPS (FTP-SSL), but both of those require a lot more configuration than we can cover in the quick reply box.

How's that?

Forgot to mention that you'll also need to punch a hole in your home router in order to allow the two FTP ports (data and control ports), typically 20 and 21, and forward traffic on those ports to your PC from the router. There are ways around opening *both* of them, but you'd have to convey special instructions to each client and that may be more trouble than it's worth.

Keep in mind that opening ports and forwarding them to your PC does open up potential security issues. You'll want to have that PC as protected as possible, while still allowing the FTP server to do its job.

I use YouSendIt for large files. They can be password protected separately (for a fee) and either stored online or the downloads expire on a set date.

__________________
Lily Chambers, The Virtual Office Goddess, LLC
Author "How to Do Your Own Small Business Bookkeeping"

Originally Posted by bridiej

I use FilesAnywhere on a daily basis - I just sent the client a link in an email and they can click that to upload their files. It also has a desktop application so you don't have to go online as such to transfer them over to your personal folders. Some clients use Dropbox but I don't like having to ask people to install something on their PC to enable easy sharing IYSWIM

Hi Bridie, Files Anywhere looks like the answer. Could I ask for a quick review? Which plan are you on or do you use the free version. Is the free version sufficient? How do you / your clients find it? What are the pro and cons? Sorry to be so curious - just starting out and keen to learn.

Betty