SSLOPT (JANUS DEFINE parameter): Difference between revisions
mNo edit summary |
|||
Line 14: | Line 14: | ||
==FPTSERVER ports== | ==FPTSERVER ports== | ||
For <var>FTPSERVER</var> ports, if <var>SSLOPT</var> is set, FTP clients can use | For <var>FTPSERVER</var> ports, if <var>SSLOPT</var> is set, FTP clients can use an <var class="product">FTP Server</var> without using the AUTH FTP command to switch to using SSL. If <var>SSLOPT</var> is not specified, a client attempt to logon without issuing an AUTH FTP command to switch to SSL results in a rejection of the logon attempt (with an FTP 534 response) and a closing of the connection. | ||
In other words, without the <var>SSLOPT</var> parameter, FTP commands and data must be exchanged over an encrypted SSL connection. | In other words, without the <var>SSLOPT</var> parameter, FTP commands and data must be exchanged over an encrypted SSL connection. | ||
Revision as of 00:11, 6 March 2012
<section begin="desc" />Specifies optional use of SSL<section end="desc" />
SSLOPT is a parameter on JANUS DEFINE, which defines and sets characteristics of a Janus port.
Valid only for CLSOCK and FTPSERVER (as of Sirius Mods 8.0) SSL (Secure Sockets Layer) ports, this parameter specifies that the use of SSL-like encryption is optional for applications using the port. An SSL port is one that includes the SSL parameter in its definition.
CLSOCK ports
For CLSOCK ports, if SSLOPT is set for an SSL port, the SSL or NOSSL parameter (or their equivalents) on $Sock_Conn and the applicable Janus Sockets object method calls determines whether or not the connection will be encrypted. If the connection is encrypted, the SSLPROT setting influences the type of encryption protocol that will be used.
If SSLOPT is set for an SSL port, but no SSL or NOSSL parameter (or their equivalents) is specified on $Sock_Conn and the applicable Janus Sockets object method calls, the connection is not encrypted by default.
If SSLOPT is not set for an SSL port, SSL is used for all client connections from the port, and specifying the NOSSL parameter on a $Sock_Conn call is treated as an error.
FPTSERVER ports
For FTPSERVER ports, if SSLOPT is set, FTP clients can use an FTP Server without using the AUTH FTP command to switch to using SSL. If SSLOPT is not specified, a client attempt to logon without issuing an AUTH FTP command to switch to SSL results in a rejection of the logon attempt (with an FTP 534 response) and a closing of the connection. In other words, without the SSLOPT parameter, FTP commands and data must be exchanged over an encrypted SSL connection.
SSL support was made available for FTPSERVER ports in Sirius Mods 8.0.