[CentOS] TLSv1.2 support for lftp on CentOS 6.x
Johnny Hughes
johnny at centos.org
Tue Aug 2 17:57:13 UTC 2016
On 08/02/2016 11:00 AM, Olivier BONHOMME wrote:
> On Tue, Aug 02, 2016 at 03:29:07PM +0000, Olivier BONHOMME wrote:
>> On Tue, Aug 02, 2016 at 02:56:26PM +0000, Olivier BONHOMME wrote:
>
>> So the question is: Is that behaviour can be considered as an lftp bug or not ?
>
> Hello again,
>
> Just answering to myself and the list for a conclusion. lftp in CentOS uses the
> default priority provided by gnutls and it's not possible to override it in lftp
> 4.0.9 provided in CentOS 6.
>
> Howerver, the ssl:priority feature has been implemented in lftp 4.6.2
> (https://github.com/lavv17/lftp/commit/b406805d2b3d4c9a88e24363980e5717e61d0948)
> and there is also a backport RHEL/CentOS for CentOS 7
> (https://git.centos.org/blob/rpms!lftp/373a02466b773fe2dbbfde702aec1848e006ba70/SOURCES!lftp-4.4.8-ssl-tls-restrict.patch)
>
> I think it could be nice if that feature could be backported into the CentOS 6
> lftp version.
CentOS rebuilds the source code from RHEL-6. If anything is going to be
backported, it would need to be backported into RHEL-6 and released, and
we would then get it into CentOS-6.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: OpenPGP digital signature
URL: <http://lists.centos.org/pipermail/centos/attachments/20160802/6a4cc965/attachment.sig>
More information about the CentOS
mailing list