Hello! I am evaluating the most current edition of Symantec Backup Exec System Recovery. I would like to use the backup to FTP option, but I am wary of sending the content of my servers over an unencrypted connection with passwords and files in plain text. An FTP connection has a username and password which can be intercepted, which means a malicious person could in theory grab that password and download the contents of your FTP. That being said, please advise the following.
1. What type of security do the files which are being transmitted via the FTP contain? If they are encrypted, the malicious user would have no gain from downloading them, thus there is no concern. If the backup files are encrypted and protected, what type of protection is there?
2. Is it possible to have Backup Exec open a PPTP VPN session to the FTP server, stream the data over a secured PPTP connection, and then close that connection every time the online offsite backup occurs? This would properly secure the transmission of this highly sensitive data.
Thank you for your suggestions, I could not find any security specifications surrounding this potential vulnerability.
Sincerely,
Jon