FTP client configuration file for SSL
You must create one or more FTP client
configuration files for SSL and place them in the
/etc/ssl/ftpc/ directory on the z/TPF system to establish a secure FTP client session using SSL.
FTP client configuration files must use the
following naming convention:
/etc/ssl/ftpc/machine.conf,
where: - machine
- is the host name or IP address of the FTP server to which a secure FTP session will be
established. You can also create a default FTP client configuration file that will be used if a
specific configuration file cannot be found for a given FTP session. The default configuration file
must be called
/etc/ssl/ftpc/ftpc.conf.
You must specify the following parameters for the FTP client configuration file for SSL:
- USESSL
- VERSION
- CIPHER
- VERIFYPEER.
The following parameters for the FTP client
configuration file for SSL are optional:
- CAINFO
- is required only when you have specified YES for the VERIFYPEER parameter. Either the CAINFO or CAPATH parameter (or both) is required when the value of the VERIFYPEER parameter is set to YES.
- CAPATH
- is required only when you have specified YES for the VERIFYPEER parameter. Either the CAINFO or CAPATH parameter (or both) is required when the value of the VERIFYPEER parameter is set to YES.
- CERTIFICATE
- is specified if a client certificate will be used.
- CERTTYPE
- is required only when the CERTIFICATE parameter is specified.
- KEY
- is required only when the CERTIFICATE parameter is specified.
- KEYTYPE
- is required only when the CERTIFICATE parameter is specified.
# Example FTP client configuration file
USESSL=try
VERSION=TLSv1
CIPHER=DES-CBC3-SHA,AES128-SHA,AES256-SHA
VERIFYPEER=YES
CAINFO=/etc/ca/certauth.conf