Opened 20 years ago
Closed 8 years ago
#2161 closed Patch (rejected)
Support other FTPS PROT command options
Reported by: | kevanb | Owned by: | |
---|---|---|---|
Priority: | normal | Component: | FileZilla Client |
Keywords: | Cc: | kevanb, albertfc@… | |
Component version: | Operating system type: | ||
Operating system version: |
Description (last modified by )
Per RFC-2228 supports four arguments to PROT:
C - Clear -neither integrity nor privacy
S - Safe - integrity without privacy
E - Confidential - privacy without integrity
P - Private - integrity and privacy
As of release 2.2.8c of FileZilla, if you specify a
remote site as server type "FTP over TLS (explicit
encryption)" (or "over SSL") the client sends "PROT P",
specifying to encrypt both control and data
connections. There should be an option in the client
to choose the level of protection you desire. Some FTP
servers (such as WS_FTP Server) now support allowing a
clear command channel after authentication for
compatibility with FTP application gateways/proxies
found in firewalls and NAT devices.
Attachments (1)
Change History (12)
comment:1 by , 12 years ago
Component: | Other → FileZilla Client |
---|
comment:2 by , 12 years ago
by , 12 years ago
Attachment: | prot_c.diff added |
---|
Patch for svn revision 5003. Adds support for PROT C command.
comment:3 by , 12 years ago
Cc: | added |
---|---|
Resolution: | → worksforme |
Status: | new → closed |
Hi,
I've added support for PROT C/P command option. By default, filezilla works as always, using PROT P. If you want to use PROT C, put something like that on your sitemanager.xml
<FileZilla3>
<Servers>
<Server>
[...]
<ProtLevel>C</ProtLevel>
[...]
comment:4 by , 12 years ago
Resolution: | worksforme |
---|---|
Status: | closed → reopened |
comment:5 by , 12 years ago
Type: | Feature request → Patch |
---|
comment:8 by , 11 years ago
Status: | reopened → moreinfo_reopened |
---|
Please test it with queued files following a restart of FileZilla, it's not being saved there.
comment:9 by , 10 years ago
Status: | reopened → moreinfo_reopened |
---|
comment:10 by , 8 years ago
Description: | modified (diff) |
---|---|
Type: | Patch → Feature request |
comment:11 by , 8 years ago
Resolution: | → rejected |
---|---|
Status: | moreinfo_reopened → closed |
Type: | Feature request → Patch |
PROT C support won't be implemented as it is vulnerable to data connection stealing attacks.
Taken from closed duplicate #2387:
"It would be great to choose between 'PROT P' and 'PROT
C' in default settings and for each site in the
manager."