This is an old revision of the document!
Supported Transfer Protocols
As of version 4.0, WinSCP supports three transfer protocols, SFTP, FTP and SCP. Currently, many servers support all three protocols. Each has its advantages and disadvantages, while FTP has one big disadvantage, being insecure. This document contains a comparison to help you to decide which is most appropriate for your needs. The comparison describes both features that are characteristic to the specific protocol as-is, and features that are caused by the implementation of the protocol in WinSCP.
The default mode of operation is to use SFTP and fall back to SCP. Select your preferred protocol on Login dialog.
SFTP (SSH File Transfer Protocol)
Despite SSH in its name, it is designed to work over any reliable data stream, but WinSCP supports only operation over SSH, which is also by far its most common usage.
Being operated over SSH, it is secure protocol. In its basic functionally it is similar to old FTP, while having better designed advanced functionality. Unfortunately not all SFTP server implementation takes advantage of the advanced features, yet.
Especially in its later versions (from 4 upwards), it is more platform independent, compared to both FTP and SCP.
Unlike SCP, for connection with an SFTP server you do not need access to shell (although some implementations may still require that).
= SCP scp SCP (Secure Copy Protocol) =
copies files between hosts on a network. It uses ssh(1) for data transfer, and uses the same authentication and provides the same security as ssh(1). Unlike rcp(1), scp will ask for passwords or passphrases if they are needed for authentication.
Any file name may contain a host and user specification to indicate that the file is to be copied to/from that host. Copies between two remote hosts are permitted.
FTP (File Transfer Protocol)
FTP, being the oldest of the three, is most widespread transfer protocol of nowadays. It is inherently insecure, sending all data (including passwords) unencrypted. Although there exist secure variants (FTP over SSL), they are not supported by WinSCP. Functionally it is inferior to SFTP. Also it is less platform independent than later versions of SFTP, mainly in respect to directory listing.
Protocol Comparison
The list below shows only those features which differ between the protocols, so it is not complete listing.
Feature | SFTP | FTP | SCP |
---|---|---|---|
Security | Secure (SSH) | Insecure. Secure variants (FTP over SSL) unsupported by WinSCP. | Secure (SSH). |
Speed | Generally slowest (encryption and necessity to wait for packet confirmations). | Generally fastest file transfer (no encryption and efficient file transfer), yet transfer setup is slow, so transfer of large number of small files can be slow. | Medium (encryption, but efficient file transfer, yet it does not allow the transfer to be interrupted). |
Transfer resume | Supported. WinSCP supports resuming only since SFTP-2 (which introduces rename command). | Supported. | Unsupported. |
Large files | Supports files over 4 GB (uses 64-bit sizes). | Supports files over 4 GB. | Does not support files over 4 GB (32-bit boundary). |
Append to end of file | Supported. | Unsupported. | Unsupported. |
Transfer cancellation | Supported. | Supported, but can be time-consuming. | Transfer cannot be canceled without termination of session. |
Text (ASCII) transfer mode | Supported since SFTP-4. For older versions WinSCP emulates text mode by converting files before transfer. | Supported. | Not supported by the protocol. WinSCP emulates text mode by converting file before transfer. |
Directory operations | Recursive operations with directories (deletion, permissions change) must be performed separately for each file. Thus operations can take a long time, especially for directories with a large number of files. | Recursive operations with directories (deletion, permissions change), can be done with a single command (rm , chmod , etc). Thus they are quick. On the other hand it limits some functionality. |
|
File renaming and moving | Supported since SFTP-2. | Supported. | Supported (mv ). |
File duplication | Unsupported by the protocol. WinSCP can open a separate shell session to execute the command. | Unsupported. | Supported (cp ). |
Execution of arbitrary command | Unsupported by the protocol. WinSCP can open a separate shell session to execute the command. | Unsupported. WinSCP allows user to execute arbitrary protocol command. | Supported as long as the command does not require user input. |
Setting properties (time-stamp, permissions) of uploaded files | Supported. | Unsupported. | Supported. |
Owner or group change | In SFTP-2 and SFTP-3, the owner and group can be changed only with knowledge of UID/GID (unsupported by WinSCP). Since SFTP-4 even change using user or group name is allowed. | Unsupported. | Supported (chown , chgrp ). |
Checksum calculation | Supported, if the server supports respective SFTP protocol extension. | Unsupported. | Unsupported. |
Link creation | It is possible to create and edit symbolic links since SFTP-3. Hard links are supported only since SFTP-6 (unsupported by WinSCP). | Unsupported. | It is possible to create both symbolic and hard links (ln ). Symbolic links can be edited also. |
User group list lookup | Unsupported. | Unsupported. | Supported (groups ). |
Influence of environment variables | Generally unaffected by environment variables. | As WinSCP uses shell, it is influenced by environment variables (date format, etc.). WinSCP requires the English environment. See requirements. | |
File modification time-stamp | Theoretically the problem does not occur, as the protocol requires timestamps to be in UTC. Practically some of the SFTP servers have problems with DST. | Some shell commands are influenced by daylight-saving time. For example, the ls command can return a different time than scp . Thus, after transfer, the time-stamp of the file can be different. Also there can be an additional difference caused by the server timezone offset. This causes trouble when comparing directories and synchronization. |
|
Configuration | Generally, only login information is needed. | For a successful connection to a server it is often necessary to properly set up several configuration options on the Login dialog. |