[BlueOnyx:16235] Re: FileZilla unable to connect using implicit TLS
Michael Stauber
mstauber at blueonyx.it
Tue Oct 21 08:20:30 -05 2014
Hi Jim,
> Also if I am correct in my understanding then these options should be
> commented out in /etc/proftpd.conf ?
>
> TLSOptions UseImplicitSSL
> Port 990
Could be.
> Also I wonder if SSLv3 should be removed by default since it has been
> identified that it contains a vulnerability (poodle attack) ?
Yes, see the other messages here with "poodle" in the subject. I laid
out a plan of action how this will be done. But there are certain
complexities to this due to our version of Dovecot being to old. Once
that's solved I'll build a set of updates that disables SSLv3 for all
services.
As for FTP accepting connections on port 990: Filezilla, define server,
select port 990, choose "explicit". The connection works. I'd rather not
take functionality away if it *just* works.
--
With best regards
Michael Stauber
More information about the Blueonyx
mailing list