Bug#558597: proftpd-basic: Upgrade to 1.3.2b-2 breaks FTPES

Sun, 29 Nov 2009 06:10:54 -0800 

Package: proftpd-basic
Version: 1.3.2b-2
Severity: important

Since I upgraded to 1.3.2b-2, I could not login to my FTP account. I
force TLS on both data and control connection. When I disable TLS/SSL
everything works fine, and when I downgrade to 1.3.2b-1 TLS works as
expected. I guess it is a problem with TLS renegoiation, which has
been disabled in 1.3.2b-2. I found this in the debug log:

mod_tls/2.2.2: client-initiated session renegotiation detected,
aborting connection

Since the problem occurs with different FTPES clients, I suspect a
server problem.

-- System Information:
Debian Release: squeeze/sid
  APT prefers testing
  APT policy: (400, 'testing'), (300, 'unstable')
Architecture: armel (armv5tel)

Kernel: Linux 2.6.32-rc6-orion5x
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages proftpd-basic depends on:
ii  adduser                   3.111          add and remove users and groups
ii  debconf                   1.5.28         Debian configuration management sy
ii  debianutils               3.2.2          Miscellaneous utilities specific t
ii  libacl1                   2.2.48-1       Access control list shared library
ii  libattr1                  1:2.4.44-1     Extended attribute shared library
ii  libc6                     2.10.1-7       GNU C Library: Shared libraries
ii  libcap2                   1:2.17-2       support for getting/setting POSIX.
ii  libgcc1                   1:4.4.2-3      GCC support library
ii  libncurses5               5.7+20090803-2 shared libraries for terminal hand
ii  libpam-runtime            1.1.0-4        Runtime support for the PAM librar
ii  libpam0g                  1.1.0-4        Pluggable Authentication Modules l
ii  libssl0.9.8               0.9.8k-6       SSL shared libraries
ii  libwrap0                  7.6.q-18       Wietse Venema's TCP wrappers libra
ii  netbase                   4.37           Basic TCP/IP networking system
ii  openbsd-inetd [inet-super 0.20080125-3   The OpenBSD Internet Superserver
ii  sed                       4.2.1-4        The GNU sed stream editor
ii  ucf                       3.0024         Update Configuration File: preserv

proftpd-basic recommends no packages.

Versions of packages proftpd-basic suggests:
ii  openssl                       0.9.8k-6   Secure Socket Layer (SSL) binary a
pn  proftpd-doc                   <none>     (no description available)
pn  proftpd-mod-ldap              <none>     (no description available)
pn  proftpd-mod-mysql             <none>     (no description available)
pn  proftpd-mod-odbc              <none>     (no description available)
pn  proftpd-mod-pgsql             <none>     (no description available)
pn  proftpd-mod-sqlite            <none>     (no description available)

-- debconf information:
* shared/proftpd/inetd_or_standalone: standalone



-- 
To UNSUBSCRIBE, email to [email protected]
with a subject of "unsubscribe". Trouble? Contact [email protected]

Reply via email to