[RobertGraham]

SSHD is installed by default on every linux flavor I've ever touched. The OS and software are both free of any licensing fees whatsoever. It's pretty easy to setup and get going and best of all it works.

While FTP isn't a great idea, TFTP approaches poor. I'm shocked that the organizations involved here don't have security policies strictly forbidding this. Think about it, you're transmitting highly sensitive security information via clear text.

I urge the people doing this to rethink this practice. Spending all the money that CheckPoint costs only to expose it like that can't be good security. Backup data(archived data at rest) is a huge vulnerability that have created exposures for many, many companies. Don't be the next one in the headlines.