Hi Gil,
1. SFTP is more secure than FTP obviously. If you want your files to be secured and prevent from attack do go for PGP encryption. It comes with SFTP add-on itself
PGPEncryption Module: A Simple How to Guide
2. You have already figured out answer to ques 2 as i can see above
regards,
Vikas