On 2/27/2023 9:32 AM, Charles Mills wrote:
Starting I think with V2R5 you need AT-TLS for the FTP server, and for TLS 1.3
(only) on the client.
Don't know about TLS 1.3 (we don't use that yet), but it clearly still
supports TLS 1.2. See below:
EZA1450I IBM FTP CS V2R5
EZA1466I FTP: using TCPIP
EZA1456I Connect to ?
EZA1736I public.dhe.ibm.com
EZYFT18I Using catalog '/usr/lib/nls/msg/C/ftpdmsg.cat' for FTP messages.
EZA1554I Connecting to: public.southdata.ibm.com 170.225.126.18 port: 21.
220-**********************************************************************
* *
* IBM's internal systems must only be used for conducting IBM's *
* business or for purposes authorized by IBM management. *
* *
* Use is subject to audit at any time by IBM management. *
* *
* Important Please read *
* *
* Machine Code updates provided through this site are available *
* only for IBM machines that are under warranty or an IBM hardware *
* maintenance service agreement Code for operating systems or other *
* software products is available only where entitled under the *
* applicable software warranty or IBM software maintenance *
* agreement. All code (including Machine Code updates, samples, *
* fixes or other software downloads)provided through this site *
* is subject to the terms of the license agreements which *
* govern the use of the associated code. Some exceptions may *
* apply.IBM reserves the right to change, modify or withdraw its *
* offerings,policies and practices at any time. *
**********************************************************************
220 ProFTPD Server (proftpd) [170.225.126.18]
FC0296 ftpAuth: security values: mech=TLS, tlsmech=ATTLS, tlsreuse=N,
sFTP=A, sCC=C, sDC=P
FC2975 ftpAuthAttls: AT-TLS policy set as application controlled.
FU2420 TTLSRule: PSI_FTP-Client~1
FU2426 TTLSGroupAction: gAct1
FU2432 TTLSEnvironmentAction: eAct1~FTP_Clients
FU2439 TTLSConnectionACtion: cAct1~FTP_Clients
EZA1701I >>> AUTH TLS
234 AUTH TLS successful
FC3144 authServerAttls: Start Handshake
FC3175 authServerAttls: FIPS140 not enabled
FC3212 authServerAttls: Using TLSv1.2 protocol
FC3230 authServerAttls: SSL cipher: 002F
FU2135 getCtrlConnCertAttls: Request certificate, size 1751
FU2755 getSessionIdAttls: Issuing SIOCTTLSCTL to get decoded AT-TLS
Session ID
EZA2895I Authentication negotiation succeeded
--
Phoenix Software International
Edward E. Jaffe
831 Parkview Drive North
El Segundo, CA 90245
https://www.phoenixsoftware.com/
--------------------------------------------------------------------------------
This e-mail message, including any attachments, appended messages and the
information contained therein, is for the sole use of the intended
recipient(s). If you are not an intended recipient or have otherwise
received this email message in error, any use, dissemination, distribution,
review, storage or copying of this e-mail message and the information
contained therein is strictly prohibited. If you are not an intended
recipient, please contact the sender by reply e-mail and destroy all copies
of this email message and do not otherwise utilize or retain this email
message or any or all of the information contained therein. Although this
email message and any attachments or appended messages are believed to be
free of any virus or other defect that might affect any computer system into
which it is received and opened, it is the responsibility of the recipient
to ensure that it is virus free and no responsibility is accepted by the
sender for any loss or damage arising in any way from its opening or use.
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [email protected] with the message: INFO IBM-MAIN
