WU-FTPD 2.6.1 release notes (5900-1547, January 2011)
Table Of Contents
- WU-FTPD 2.6.1 release notes
- Contents
- 1 WU-FTPD 2.6.1 Release Notes
- Announcement
- What Is In This Version
- WU-FTPD 2.6.1 Features
- Support for TLS/SSL
- Cryptography Algorithm
- Prerequisites for Configuring the TLS/SSL Feature
- Certificates and Authorities
- Generating Certificates and Keys Using OpenSSL 0.9.7m
- Configuring a WU-FTPD TLS Server and an FTP Client
- Configuring an FTP Server in a TLS/SSL Environment
- Configuring an FTP Client in a TLS/SSL Environment
- Basic Configuration for Secured File Transfer
- Virtual FTP Support
- Setting up Virtual FTP Support
- Support for Virtual FTP
- Without ftpservers (4) File
- Usage
- The virtual address allow usernameand virtual address deny username directives
- The virtual address private directive
- The virtual address root path and virtual address banner path directives
- The virtual address logfile path directive
- The virtual address hostname string directive
- The virtual address root path and virtual address email string directives
- The virtual address incmail emailaddress directive
- The virtual address mailfrom emailaddress directive
- Usage
- With ftpservers(4) File
- Usage
- The virtual address allow username and virtual address deny username directives
- The virtual address private directive
- The root path directive
- The banner path directive
- The logfile path directive
- The hostname some.host.name directive
- The email emailaddress directive
- The incmail emailaddress directive
- The mailfrom emailaddress directive
- Usage
- Without ftpservers (4) File
- Setting up a Virtual FTP Server
- The privatepw Utility
- New Clauses in the /etc/ftpd/ftpaccess File
- Enabling the Identification Protocol (RFC 1413)
- New Feature Related to Data Transfer
- Field Added to the /var/adm/syslog/xferlog File
- Command-Line Options
- IPv6 Support
- HP-Specific Features
- Other Features
- Support for TLS/SSL
- Changed and Removed Features
- Compatibility and Installation Information
- Known Problems and Limitations
- Related Information
- Defects Fixed in This Release
NOTE: The TLS/SSL feature is available on the HP-UX 11i v2 and HP-UX 11i v3
operating systems.
You can install the WU-FTPD 2.6.1 enhancement bundle, which you can download from
http://www.software.hp.com, to obtain the TLS/SSL feature on the HP-UX 11i v2
operating system. The WU-FTPD 2.6.1 enhancement bundle contains the latest core patch
required for the TLS/SSL feature on the HP-UX 11i v2 operating system.
The WU-FTPD 2.6.1 software bundle contains the FTP daemon with SSL support for the
HP-UX 11i v3 operating system. You can download the WU-FTPD 2.6.1 software bundle
from the software depot at http://www.software.hp.com
IMPORTANT: WU-FTP 2.6.1 includes the software developed by the OpenSSL project
for use in the OpenSSL toolkit available at:
http://www.openssl.org/
This section addresses the following topics:
• “Cryptography Algorithm” (page 7)
• “Prerequisites for Configuring the TLS/SSL Feature” (page 8)
• “Generating Certificates and Keys Using OpenSSL 0.9.7m” (page 9)
• “Configuring a WU-FTPD TLS Server and an FTP Client” (page 14)
• “Basic Configuration for Secured File Transfer” (page 18)
Cryptography Algorithm
The TLS subsystem uses the following components to provide services, such as integrity
checking, authentication, and confidentiality:
• Private key algorithms, or symmetrical cryptography. This component uses a shared
secret and the key, for both encryption and decryption of a message. Input data is
mathematically processed using the private key algorithm and the key, to produce
the ciphertext output that must be decrypted by the recipient. Commonly used private
key algorithms include DES, Blowfish, AES, and IDEA.
• Public key algorithms. These algorithms use two mathematically related keys to
separate the process of encryption and decryption. By using functions that are easy
to perform in one direction but difficult to perform in the opposite direction, the two
keys provide a high level of security if large numbers are used. Commonly used
public key algorithms include RSA, El Gamal, and Diffie-Hellman.
While establishing a TLS session, you can use public key cryptography to exchange
a session key that is used in a private key algorithm. You can also use these public
WU-FTPD 2.6.1 Features 7