Hello,I had some problems connecting to my SSL enabled pure-ftpd server with filezilla 3.42 (on windows) which uses GnuTLS 3.6.7. I am running OpenBSD 6.5.
I opened a thread on filezilla forum and the developer claims this is due to a bug in LibreSSL.
The thread is here: https://forum.filezilla-project.org/viewtopic.php?p=169140#p169140 Basically, here is what he says:the Client Hello does not contain a server_name extension, whereas the Server Hello does contain a server_name extension.
From RFC 5246: "An extension type MUST NOT appear in the ServerHello unless the same extension type appeared in the corresponding ClientHello. If a client receives an extension type in ServerHello that it did not request in the associated ClientHello, it MUST abort the handshake with an unsupported_extension fatal alert."
From RFC 6066: "When resuming a session, the server MUST NOT include a server_name extension in the server hello."
Best Regards
smime.p7s
Description: S/MIME Cryptographic Signature
