On Thu, Nov 18, 2004 at 08:39:30PM +0100, DiSToAGe wrote: > It seems when you use lftp on ftps implicit servers (ftps://xxx) there > is a problem. The PROT P command is not sent by lftp to the server. Or > in the rfc 2228 it is written :
The next lftp version will have a setting ftps:initial-prot. BTW, draft-murray-auth-ftp-ssl-05.txt states that PROT P is the default in implicit ssl mode, and rfc 2228 does not mention implicit ssl mode at all, in the contrary, it specifies that AUTH should be sent for control connection protection: An FTP security interaction begins with a client telling the server what security mechanism it wants to use with the AUTH command. The server will either accept this mechanism, reject this mechanism, or, in the case of a server which does not implement the security extensions, reject the command completely. That's why that RFC is not applicable to implicit ssl mode. -- Alexander.
