File Transfer between a Macintosh Client and Windows or Unix Server
Note: This page outlines secure methods for transferring files between a Macintosh client and a Windows or Unix server. If you are transferring files between other systems, please see the File Transfer page to find the secure method that's right for your needs.
| Recommended File Transfer Options | ||||||||
|---|---|---|---|---|---|---|---|---|
| SFTP/SCP | WebDAV | FTP over SSL (FTPS) |
Microsoft File Sharing (SMB/CIFS) |
|||||
| Mac Client & Win/Unix Server |
X |
X |
X |
(X) |
||||
- What is SFTP/SCP?
- What is WebDAV?
- What is FTP over SSL (FTPS)?
- What is Microsoft File Sharing (SMB/CIFS)?
What is SFTP/SCP?
Both SFTP (Secure File Transfer Protocol) and SCP (Secure Copy Protocol) are file transfer protocols similar to FTP but with additional security (both commands and data are encrypted).
- Fetch is the CIT-supported SFTP software for Macintosh. Use it to transfer files and also to perform simple file and directory commands such as listing files and changing directories. For information on installing Fetch and transferring files, see File Transfer Using Fetch.
- CIT does not currently distribute an SCP client. Systems Support recommends that you use SFTP to transfer files.
What is WebDAV?
WebDav (Web-based Distributed Authoring and Versioning) is a file transfer protocol that is used at Cornell in conjunction with CUWebAuth and Kerberos to provide additional security for single-sign on connections.
The main advantages of using CUWebAuth are that the web administrator doesn't need to maintain access control lists, and members of the campus community have a single NetID and password to remember.
The WebDAV client sends an encrypted NetID and password to the kProxy server. The kProxy server logs into Kerberos and obtains credentials which are sent to the WebDav server vie HTTP headers. This protects NetID and password information while still allowing the ease of use provided by single sign-on. For more information, see the Introduction to CU WebAuth or this overview of WebDAV.
For more information, see File Transfer Using WebDAV.
What is FTP over SSL (FTPS)?
FTP over SSL (FTPS or FTP/SSL) is a file transfer protocol using FTP in conjunction with a secure SSL (Secure Socket Layer) layer to provide extra encryption. The server provides a signed SSL certificate. When you use FTPS, you can transfer files and also perform some simple file and directory commands such as listing files and changing directories.
Note: FTP over SSL for file transfer to/from Unix servers should ONLY be used because it is required by an external client. Most file transfers can be completed using either SFTP/SCP or WebDAV.
Fetch is the CIT-supported SFTP software for Macintosh. For information on installing Fetch and transferring files, see File Transfer Using Fetch.
What is Microsoft File Sharing (SMB/CIFS)?
Microsoft File Sharing (using the underlying SMB/CIFS protocol) is a software application that allows Windows or Macintosh and Unix computers to interact with each other. It creates a connection from the Win/Mac client to the Unix server, allowing you to see directories on the server as if they were on the client computer.
Microsoft File Sharing (SMB/CIFS) is "depreciated" because the data is not encrypted over the network. For servers that store private data, Microsoft File Sharing (SMB/CIFS) is not allowed. The University policy concerning private data is being reviewed and finalized. Currently, the private data classification comprises Social Security, credit card, driver's license and bank account numbers, and patient treatment records. This classification may expand. If you are unsure which protocol to use instead, send e-mail to systems-support@cornell.edu. The Systems Support group will work with you to find a secure solution.
For step-by-step instructions for transferring files using Microsoft File Sharing, see File Transfer Using Microsoft File Sharing.