Board index » delphi » Indy FTP Server and SSL/TLS
Khash Sajadi
Delphi Developer |
Khash Sajadi
Delphi Developer |
Indy FTP Server and SSL/TLS2003-12-18 07:30:52 PM delphi240 I have read in different newgroups that Indy 9 can't work with SSL/TLS. Is this true? and if so, is there any way of building a FTP server with Indy 9 that supports SSL? (I am already trying SecureBlackbox with not much luck) Thanks, Khash |
Eugene Mayevski [SecureBlackbox]
Delphi Developer |
2003-12-18 07:51:03 PM
Re:Indy FTP Server and SSL/TLS
Khash Sajadi writes:
QuoteI have read in different newgroups that Indy 9 can't work with SSL/TLS. Is special support from the protocol implementation itself. Ie. to switch to SSL mode, the client must send (and server must handle) special commands. SecureBlackbox provides only client side of FTP-over-SSL support. I.e. you can make FTP client using SecureBlackbox, but you can not make FTP server with SSL support with Indy 9 at all. I suppose that Indy 10 will solve this problem but as far as I know, server-side SSL doesn't work in Indy 10 yet (Indy team, please correct me if I am wrong). -- Eugene Mayevski EldoS Corp., CTO Security and networking solutions www.eldos.com |
Khash Sajadi
Delphi Developer |
2003-12-18 08:03:53 PM
Re:Indy FTP Server and SSL/TLS
Thank you Eugene.
I have posted details of the issues I have to that newsgroup. I understand I can not use explicit FTP security with Indy 9, but is it possible to have a sort of implicit SSL over FTP and FTP clients like SmartFTP (www.smartftp.com) support it? Thanks again, Khash "Eugene Mayevski [SecureBlackbox]" <XXXX@XXXXX.COM>writes QuoteKhash Sajadi writes: |
Eugene Mayevski [SecureBlackbox]
Delphi Developer |
2003-12-18 08:55:34 PM
Re:Indy FTP Server and SSL/TLS
Khash Sajadi writes:
QuoteI have posted details of the issues I have to that newsgroup. I understand I -- Eugene Mayevski EldoS Corp., CTO Security and networking solutions www.eldos.com |
J. Peter Mugaas
Delphi Developer |
2003-12-19 06:44:05 PM
Re:Indy FTP Server and SSL/TLS
On Thu, 18 Dec 2003 12:03:53 -0000, Khash Sajadi writes:
QuoteThank you Eugene. the server has to support some special FTP extended commands (PROT and PBSZ ) and the current FTP server does have this. Indy 9.0 doesn't support those commands and that server would probably require some special coding in addition to that (it's a little more extensive than you would think). -- J. Peter Mugaas - Chairperson, Distribution Team, Indy Pit Crew Internet Direct (Indy) Website - www.nevrona.com/Indy Personal Home Page - www.wvnet.edu/~oma00215 If I want to do business with you, I will contact you. Otherwise, do not contact me. |
J. Peter Mugaas
Delphi Developer |
2003-12-19 06:47:07 PM
Re:Indy FTP Server and SSL/TLS
On Thu, 18 Dec 2003 13:51:03 +0200, Eugene Mayevski [SecureBlackbox] writes:
QuoteKhash Sajadi writes: code. The FTP server does support both implicit SSL (using port 990) and explicit SSL (using the standard port 21 and a special command to tell the server to negotiate SSL). -- J. Peter Mugaas - Chairperson, Distribution Team, Indy Pit Crew Internet Direct (Indy) Website - www.nevrona.com/Indy Personal Home Page - www.wvnet.edu/~oma00215 If I want to do business with you, I will contact you. Otherwise, do not contact me. |
Eugene Mayevski [SecureBlackbox]
Delphi Developer |
2003-12-19 07:11:36 PM
Re:Indy FTP Server and SSL/TLS
J. Peter Mugaas writes:
QuoteActually, the situation as it stands is this, I am waiting for something to Cause the developer had problems testing them with the code we had (about a month ago). Has the situation improved? -- Eugene Mayevski EldoS Corp., CTO Security and networking solutions www.eldos.com |
J. Peter Mugaas
Delphi Developer |
2003-12-19 08:00:31 PM
Re:Indy FTP Server and SSL/TLS
On Fri, 19 Dec 2003 13:11:36 +0200, Eugene Mayevski [SecureBlackbox] writes:
QuoteJ. Peter Mugaas writes: I would have to port to the new code and I can not do that until IPv6 is reenabled because of an extension in the FTP server (I require that some work). I have to use some older code to keep some IPv6 support I require and I currently develop the FTP server code on that older core code. Unfortunately, the SSL API does have some extensions just for the FTP server. I think Kudzu may be able to answer better about the rest of the Indy Core. |