Julien Danjou seems to be looking for “a viable file transfer protocol with encryption support” and mentions that HTTPS isn’t a file transfer protocol. I disagree – if you combine HTTPS and DAV, you have a fairly ok file transfer protocol, which gets rid of a lot of the problems surrounding FTP. Though, you are still stuck with the problem of the user your web server is running as will own all your files. It should be possible to fix, either by doing some apache magic or by using a DAV server which setuid()s to the user doing the access.

Back to posts