cURL / Mailing Lists / curl-library / Single Mail

curl-library

Re: FTPS status report

From: Dan Fandrich <dan_at_coneharvesters.com>
Date: Fri, 21 Nov 2003 08:01:45 -0800

On Fri, Nov 21, 2003 at 10:44:00AM +0100, Daniel Stenberg wrote:
> On Thu, 20 Nov 2003, Dan Fandrich wrote:
> > Since the current curl behaviour doesn't seem to be even mentioned on that
> > explanatory page, hopefully that means noone is using it and noone will
> > notice if it changes. However, based on that page, it looks like a URL of
> > ftps://server:990/ using curl 10.7.8 probably will actually work on "SSL
> > connect" servers.
>
> I don't think so. Since 7.10.8 assumes that the data connection will be setup
> unencrypted, while at least the server I've worked against now assumes the
> data connection encrypted when the initial connection is made using SSL.

This sounds like the "SSL connect" behaviour. Servers implementing the
AUTH SSL or AUTH TLS behaviour assume the initial connection will be done
without SSL.

> If we could work out a way to figure out what the server will expect the data
> connection to be, before it is setup, then we could support both ways
> transparantly.

What I get out of reading that web page is that servers will always connect
without SSL on port 21 and use an AUTH SSL or AUTH TLS to negotiate SSL,
and servers will always connect with SSL on port 990, without using any
AUTH command.

> > It might be worthwhile to allow that behaviour as an option in libcurl and
> > make the front end automagically invoke that mode when it gets a URL
> > specifying port 990 directly, like the above.
>
> All ftps:// URLs will use SSL automaticly for both connections. I haven't yet
> set a default port number for ftps:// urls. Is 990 the one to use?

I thought this was the behaviour in 7.10.8. Are you saying the new ftps
implementation will not be using either of the AUTH commands to negotiate
SSL?

>>> Dan

-- 
http://www.MoveAnnouncer.com              The web change of address service
          Let webmasters know that your web site has moved
-------------------------------------------------------
This SF.net email is sponsored by: SF.net Giveback Program.
Does SourceForge.net help you be more productive?  Does it
help you create better code?  SHARE THE LOVE, and help us help
YOU!  Click Here: http://sourceforge.net/donate/

Received on 2003-11-21

This message: [ Message body ]
Next message: Gisle Vanem: "Windows patches"
Previous message: Gisle Vanem: "Re: Performance problem"
In reply to: Daniel Stenberg: "Re: FTPS status report"
Next in thread: Daniel Stenberg: "Re: FTPS status report"
Reply: Daniel Stenberg: "Re: FTPS status report"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]