Comments (7)
Thanks for the pull request! I may change the TLSOption
name to something else later, e.g. TLSOption RFCConformance
or somesuch, some name that might be slightly more human-readable, since some users/admins may not be aware of the PBSZ
and its role, specifically. But the functionality will stay the same.
from proftpd.
You are most welcome, I've fixed the things you've pointed out in the pull request, please take a look at it again.
I've chosen "RequirePBSZ", because it's specifically about that command, and the error message also mentions this command in reply to PROT, when forgotten. There are a rather large number of relevant RFCs, and even RFC2228 has multiple requirements, that's one of the reasons why I chosen a name for the option with "RFC" in it. Personally I think, that might be misleading and confusing on the long run.
from proftpd.
In the case of FTP over SSL/TLS, there's only one particularly relevant RFC: RFC 4127. However, your point is taken.
Another approach might be to not provide such a TLSOption
at all, and simply always treat PBSZ
as optional. A quick look through the vsftpd
and pure-ftpd
source code bases show that those FTP daemons do not enforce a requirement of PBSZ
, nor do they provide configurations for requiring them, which lends credence to the idea that the admins running those servers have no need to require a PBSZ
command.
from proftpd.
Honestly, I don't really see any reason why couldn't be optional by default, except if some sysadmin is feeling to start a holy crusade against broken clients, and wants to teach the world a lesson. Apart from that, I don't think it would hurt anyone.
Would you like me to change the pull request to make this the default behaviour?
from proftpd.
Yes, please. It's easy enough to add such an option in, later, if/when we find a use case.
from proftpd.
Done, please review. Instead of removing the error return, i've just disabled the codepath with a macro, if that's fine. Might come handy if there's a usecase.
from proftpd.
PR merged to master; thanks!
from proftpd.
Related Issues (20)
- Add crosscompiling support for ./configure.in HOT 1
- Using FTPS after upgrading from 1.3.8a to 1.3.8b leads to crash HOT 4
- SFTP Too many bad authentication attempts - Terminal is working HOT 3
- Client timeout after sending client version string after upgrading from 1.3.7e to 1.3.8b, but not reproducible for me HOT 2
- proftpd not using source port 20 for ftp active HOT 5
- Add support for logging SFTP ciphers/algorithms in SQL databases HOT 6
- Jot API gives the wrong timestamp in mod_exec HOT 6
- Impossible to connect to data port using implicit FTPS HOT 2
- Using mod_facl and mod_vroot at same time causes unexpected permissions issues HOT 16
- Ban on RootLogin does not seem to be working HOT 2
- proftpd in docker - not optimal configurable HOT 2
- Permission question about proftpd.sock HOT 1
- Bad handling of lack of extended attributes leads to SFTP out of memory error HOT 11
- proftpd.org HTTPS not working
- SFTP statvfs extension fails when mod_vroot is in use HOT 15
- DenyUser Limit does not work for ftp, but works for sftp HOT 6
- Repeated reload operations may cause memory leakage. HOT 3
- Implement [email protected] SFTP extension HOT 3
- ftp user in same group can not upload file HOT 6
- SSH public key fingerprints in mod_sftp logs HOT 5
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from proftpd.