Does TLS / SSL need a self signed cert. or is that optional..
if so or others wise what are the minimum parms in ftpdata that need to be
set ??
No, a self signed certificate is not necessary. A certificate-authority
(CA) certificate is required. Here are the FTP.DATA statements I use.
SECURE_MECHANISM TLS
SECURE_FTP ALLOWED ; REQUIRED or ALLOWED
SECURE_CTRLCONN CLEAR ; Minimum control connection security
SECURE_DATACONN PRIVATE ; Encrypt the data channel
TLSMECHANISM FTP ; Or ATTLS
TLSRFCLEVEL CCCNONOTIFY ; Or DRAFT or RFC4217 (depends on srvr)
KEYRING userid/keyRingName ; Contains CA certificate
EPSV4 TRUE ; Firewall friendly
Kurt Quackenbush -- IBM, SMP/E Development
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [email protected] with the message: GET IBM-MAIN INFO
Search the archives at http://bama.ua.edu/archives/ibm-main.html
