Alan Altmark wrote:
On Wednesday, 09/13/2006 at 01:24 AST, Walter
Farrell/Poughkeepsie/[EMAIL PROTECTED] wrote:
On 9/13/2006 12:45 PM, McKown, John wrote:
Yes, they do. I didn't phrase it very well. My arthritis is acting up
big time and my typing is suffering. But they don't get any "warning"
and a few people (ftp users) are complaining. WAD is the best that I
can
give them.
Are they complaining about the lack of warning, or are they not aware
that they can change their password during the ftp authentication
process?
A gender-neutral automated FTP client would not be able to deal with an
expired password as there is nothing in the FTP protocol that deals with
user password expiry or administration.
Humans can read the returned text and see it telling them about
old/new/new (or whatever). For an automated process, I'd use non-expiring
passwords and an encrypted FTP control connection to avoid the problem
(while creating another), all waiting for the day I can login to FTP using
SSL/TLS telnet Express Logon-like technology and avoid passwords
altogether.
Alan, what are you waiting for? If you are using the SSL/TLS support
with the z/OS FTP server and provide a client certificate that has been
registered with RACF and associated with your userid, you can login
without specifying your password. The required parameter combination in
FTPS.DATA is:
SECURE_LOGIN VERIFY_USER
SECURE_PASSWORD OPTIONAL
I've tested this with z/OS V1R7 on the server side and WS_FTP Pro 2007
as well as SmartFTP V.2.0 on the client side and it is working beautifully.
--
Ulrich Boche
SVA GmbH, Germany
IBM Premier Business Partner
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO
Search the archives at http://bama.ua.edu/archives/ibm-main.html
