Uploading using SFTP

When publishing a site, Sandvox is able to upload files by several methods. You make this choice when setting up your host.

We encourage you to use one of the secure publishing protocols (shown with a padlock icon in the host setup) if possible since it is more secure than plain FTP. This article is about uploading using SFTP connections. For a more in-depth look at the SFTP protocol, you may find this article helpful.

Passwords versus Public Keys

There are two ways of securing an SFTP connection; You can either use a password or a public key. You make this choice when entering the information for the alternate host in the Host Setup Assistant.

To use a public key instead of a password requires your computer and Host to be suitably set up. By using a public key, the security of the connection is increased since the encryption method is agreed before the handshake. (Suffice to say, if you don't understand this, using a public key is not for you!).

For some background information on public keys, you may be interested in this article.

The Connection Process

Authorizing the Connection

Whenever Sandvox connects to a host by SFTP, it checks the host key (also called fingerprint) of the server.

If the host key has changed since the last time Sandvox connected, you will be alerted. This is because if the host key of a server changes, it is possible that the server has been compromised, placing your personal data at risk.

It is also possible that the file which Sandvox checks host keys against is corrupt. If so, you will be alerted and asked to contact Karelia Support.


If your private key file is protected by a passphrase, Sandvox will prompt you for the passphrase as needed.

Keywords: upload, uploading, connect, connecting, connection, server, host, sftp, secure, ftp, ssh, shell, ftps

How can we improve this page? Let us know.