DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUGĀ· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT <http://issues.apache.org/bugzilla/show_bug.cgi?id=38309>. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED ANDĀ· INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=38309 ------- Additional Comments From [EMAIL PROTECTED] 2006-01-23 13:11 ------- I checked his patches and read RFC2228, RFC4217 and some internet web sites. It would be great if following things are done for the future work of FTPS. 1) implicit mode. There is the two mode of FTPS to connect it securely. (implicit/explicit) It is implemented only the explicit mode. 2) It can not specify multiple keystores and/or trustmanagers. I want to use multiple keystores and/or trustmanagers. 3) The password to access KeyStore can not change. I think that this lacks security. 4) It can not change the data connection security level(PROT command). 5) It can not change the protected data bufferes(PBSZ command). 6) The X509TrustManager should be made by implements javax.net.ssl.X509TrustManager. But, X509TrustManager interface is a part of JSSE, so there are not included in JDK1.3. The JSSE was introduced since JDK1.4 by default. (In reply to comment #8) > (In reply to comment #7) > my modifications of his code. I'm waiting his anwers. > > > > FTPS its very similar to FTP, the most significant diferences are: > > javax.net.ssl.SSLSocket, certificates, and after connect sends AUTH SSL, > > that > > negotiates the secure method connection, and handshake... his > > implementation, > > don't overwrite, only use the variables, to assing them "ssl streams" of > > the SSl > > socket. > > > > I'll tell you, when he responds me. > > So if you didn't need to change these variables, all you really needed was a > getter method. Daniel, maybe that would be a better solution? I don't > imagine > you're too comfortable with exposing stuff that begins and ends with > underscores? > > Jose, it would be great if we could bring FTPS into commons-net. > > -- Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug, or are watching the assignee. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
