[CentOS] TLSv1.2 support for lftp on CentOS 6.x

Tue Aug 2 17:57:13 UTC 2016
Johnny Hughes <johnny at centos.org>

On 08/02/2016 11:00 AM, Olivier BONHOMME wrote:
> On Tue, Aug 02, 2016 at 03:29:07PM +0000, Olivier BONHOMME wrote:
>> On Tue, Aug 02, 2016 at 02:56:26PM +0000, Olivier BONHOMME wrote:
>> So the question is: Is that behaviour can be considered as an lftp bug or not ?
> Hello again,
> Just answering to myself and the list for a conclusion. lftp in CentOS uses the
> default priority provided by gnutls and it's not possible to override it in lftp
> 4.0.9 provided in CentOS 6.
> Howerver, the ssl:priority feature has been implemented in lftp 4.6.2
> (https://github.com/lavv17/lftp/commit/b406805d2b3d4c9a88e24363980e5717e61d0948)
> and there is also a backport RHEL/CentOS for CentOS 7
> (https://git.centos.org/blob/rpms!lftp/373a02466b773fe2dbbfde702aec1848e006ba70/SOURCES!lftp-4.4.8-ssl-tls-restrict.patch)
> I think it could be nice if that feature could be backported into the CentOS 6
> lftp version.

CentOS rebuilds the source code from RHEL-6.  If anything is going to be
backported, it would need to be backported into RHEL-6 and released, and
we would then get it into CentOS-6.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: OpenPGP digital signature
URL: <http://lists.centos.org/pipermail/centos/attachments/20160802/6a4cc965/attachment-0004.sig>