# SFTP

- SFTP stands for secure file transfer protocol
- it is the advanced version of FTP( file transfer protocol) which ensures security while transferring files betweeen the organizations/computer
- it is also known as SSH(Secure Shell)
- it works on port no 22 and uses the client- server model

## Features of SFTP

- it encrypts the data
- it executes the command
- it secures and compress the data for transmission
- it provides the authentication to username and password
- it improves uploading and downloading files functionality
- it also provides authentication to the public key

## Working 

SFTP ensures data security by applying SSH Message Authentication Code(MAC) to data packets. Firstly, a safe and secure connection is established by SFTP then it provides an advanced level of protection for data transferring. The authentication of users to the file being shared on SSH data stream, everything is encrypter by SFTP. If any unauthorized person or third party tries to access the data, it will be incomprehensible or unreadable due to encryption. For Example :- In WhatsApp, messages are end to end encrypted

## Advantages of SFTP:

1. Speed and Efficiency
2. Lower down risks while exchanging data
3. Power data accessibility

## Disadvantages of SFTP:

1. Difficult to manage
2. Security threat

## How to secure SFTP server

- use a strong password
- keep a check on the account consistently if there are any unnecessary activities contact your administrator and change the password
- by using a strong algorithm
- use file security to secure the data
- SFTP server can be secured by using blacklists and whitelists.

## SFTP file transfer using Python

- Paramiko is a python library that provides a secure way to communicate with remote servers using various protocols, including SFTP

#### most common libraries for SFTP file transfer in python are 

1. Paramiko :- well managed and continuously updated to support the new version of python.
2. Pysftp :- but in the case of Pysftp we can get less than Python 3.5 version

### Setting up Paramiko 
- it can be installed using pip command i.e.:-
- pip install paramiko

### Establishing Connection to the server


In [1]:
import paramiko

# create ssh client 
ssh_client = paramiko.SSHClient()

# remote server credentials
host = "test.rebex.net"
username = "demo"
password = "password"
port = 22

ssh_client.set_missing_host_key_policy(paramiko.AutoAddPolicy())
ssh_client.connect(hostname=host,port=port,username=username,password=password)

print('connection established successfully')

ssh_client.close()

connection established successfully


- SHH Client: We can use the Secure Shell Protocol, SSHClient() method of the Paramiko package to create an SSH client in our program. SSH clients are used to communicating with an SFTP server for the transfer of files.
- ssh_client.set_missing_host_key_policy(): If we call ssh_client.set_missing_host_key_policy(), and we pass “paramiko.AutoAddPolicy()” as an argument, then Paramiko will make our machine trust incoming traffic from our remote server.

### List down all the directories in the SFTP

In [2]:
import paramiko

# create ssh client 
ssh_client = paramiko.SSHClient()

# remote server credentials
host = "test.rebex.net"
username = "demo"
password = "password"
port = 22

ssh_client.set_missing_host_key_policy(paramiko.AutoAddPolicy())
ssh_client.connect(hostname=host,port=port,username=username,password=password)

ftp = ssh_client.open_sftp()
files = ftp.listdir()

print("Listing all the files and Directory: ",files)

# close the connection
ftp.close()
ssh_client.close()

Listing all the files and Directory:  ['pub', 'readme.txt']


- Using the above code snippets we can list down all the existing files and directories in the SFTP server.

### Uploading a File to the SFTP server:

To upload a file to the remote server using SFTP, we can use the SFTP client objects put method.

In [6]:
import paramiko

# create ssh client 
ssh_client = paramiko.SSHClient()

# remote server credentials
host = "test.rebex.net"
username = "demo"
password = "password"
port = 22

ssh_client.set_missing_host_key_policy(paramiko.AutoAddPolicy())
ssh_client.connect(hostname=host,port=port,username=username,password=password)

# create an SFTP client object
ftp = ssh_client.open_sftp()

# download a file from the remote server
files = ftp.put("./employee.xlsx","/pub/employee.xlsx")

# close the connection
ftp.close()
ssh_client.close()

PermissionError: [Errno 13] Access denied.

In [7]:
## rebex does not give writable permissions

### Downloading a File from the SFTP location:

- To download a file from the remote server using SFTP, we can use the SFTP client objects get method.

In [9]:
remote_directory = "/pub/example/"
files = ftp.listdir(remote_directory)
print("Files on server:", files)


Files on server: ['imap-console-client.png', 'KeyGenerator.png', 'KeyGeneratorSmall.png', 'mail-editor.png', 'mail-send-winforms.png', 'mime-explorer.png', 'pocketftp.png', 'pocketftpSmall.png', 'pop3-browser.png', 'pop3-console-client.png', 'readme.txt', 'ResumableTransfer.png', 'winceclient.png', 'winceclientSmall.png', 'WinFormClient.png', 'WinFormClientSmall.png']


In [14]:
import paramiko

# create ssh client 
ssh_client = paramiko.SSHClient()

# remote server credentials
host = "test.rebex.net"
username = "demo"
password = "password"
port = 22

remote_file_path = "/pub/example/imap-console-client.png"  
local_file_path = "./imap-console-client.png"

ssh_client.set_missing_host_key_policy(paramiko.AutoAddPolicy())
ssh_client.connect(hostname=host,port=port,username=username,password=password)

ftp = ssh_client.open_sftp()
files = ftp.get(remote_file_path,local_file_path)
print(f"File downloaded successfully to {local_file_path}")

# close the connection
ftp.close()
ssh_client.close()

File downloaded successfully to ./imap-console-client.png


- Using the method, we can download a file from the remote server’s file path to the local file path.
- The get method takes two arguments: the remote file path and the local file path.

## Remove file from SFTP remote location

- To remove a file from the remote server using SFTP, we can use the SFTP client object’s remove method.


In [15]:
import paramiko

# create ssh client 
ssh_client = paramiko.SSHClient()

# remote server credentials
host = "test.rebex.net"
username = "demo"
password = "password"
port = 22

ssh_client.set_missing_host_key_policy(paramiko.AutoAddPolicy())
ssh_client.connect(hostname=host,port=port,username=username,password=password)

ftp = ssh_client.open_sftp()

files = ftp.remove("/pub/example/KeyGenerator.png")

# close the connection
ftp.close()
ssh_client.close()

PermissionError: [Errno 13] Access denied.

In [16]:
## rebex does not give writable permissions

### Create a directory in the SFTP server

- To create a directory in the SFTP server, we can use the SFTP client object’s mkdir method.

In [19]:
import paramiko

# Create SSH client
ssh_client = paramiko.SSHClient()

# Remote server credentials
host = "test.rebex.net"
username = "demo"
password = "password"
port = 22

remote_directory_path = "/pub/new_directory"  # Path where you want to create the directory

ssh_client.set_missing_host_key_policy(paramiko.AutoAddPolicy())
ssh_client.connect(hostname=host, port=port, username=username, password=password)

# Open SFTP connection
ftp = ssh_client.open_sftp()

# Try to create the directory
try:
    ftp.mkdir(remote_directory_path)
    print(f"Directory {remote_directory_path} created successfully.")
except PermissionError as e:
    print(f"Permission denied: {e}")
except IOError as e:
    print(f"Failed to create directory: {e}")
except Exception as e:
    print(f"An error occurred: {e}")

# Close the connection
ftp.close()
ssh_client.close()


Permission denied: [Errno 13] Access denied.


In [22]:
# no writable permissions in the sftp server

## Conclusion:

Paramiko is a powerful Python library that provides a secure way to communicate with remote servers using various protocols, including SFTP. With Paramiko, we can easily upload and download files securely to and from remote servers using SFTP.