Article delegate-en/4092 of [1-5169] on the server localhost:119
  upper oldest olders older1 this newer1 newers latest
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
Newsgroups: mail-lists.delegate-en

[DeleGate-En] Re: FileZilla TLS security patch does not work with FTPS and Delegate
24 Aug 2008 18:11:25 GMT (Yutaka Sato)
The DeleGate Project


In message <_A4078@delegate-en.ML_> on 08/19/08(17:34:37) I wrote:
 |In message <_A4077@delegate-en.ML_> on 08/19/08(16:35:30)
 |you wrote:
 | |2008-07-24 - Security Advisory
 | |FileZilla fixes a vulnerability regarding the way some errors are
 | |handled on SSL/TLS secured data transfers.
 | |If the data connection of a transfer gets closed, FileZilla did not check
 | |if the server performed an orderly TLS shutdown.

I read the discussion in the FileZilla forum including standpoints like
mine :)

I'm suspicious if the way of shutdown handling will be the majority,
but at least it should be an option to be selected by users.
Thus I added a new option to DeleGate/9.8.4-pre6 to enable it, with
the following option:


  9 9   Yutaka Sato <>
 ( ~ )  National Institute of Advanced Industrial Science and Technology
_<   >_ 1-1-4 Umezono, Tsukuba, Ibaraki, 305-8568 Japan
Do the more with the less -- B. Fuller

  admin search upper oldest olders older1 this newer1 newers latest
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]