Hi, On Fri, 19.08.2005 at 12:41:20 +0200, Henning Brauer <[EMAIL PROTECTED]> wrote: > ftp-proxy does not support TLS.
ok. > moreover, when you think about it, ftp w/TLS encrypts the control > channel, it's the entire point that 3rd parties (like ftp-proxy) can't > see or modify what's gpoing on, so this cannot possibly work. I can't see why this must be so. HTTPS can be proxied with Squid which "somehow" handles the crypto stuff after reading the client's "CONNECT ...", and digging into FTP+SSL suggests that the control channel could be used to break end-to-end encryption into two pieces, originating or terminating at the gateway machine. Eg. the client says "AUTH TLS" to start negotiating SSL... Best, --Toni++
