1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
|
==============
RFC compliance
==============
.. contents:: Table of Contents
Introduction
============
This page lists the standard Internet RFCs that define the FTP protocol.
pyftpdlib conforms to the FTP protocol standard as defined in `RFC-959`_ and
`RFC-1123`_, implementing all the fundamental commands and features described
in them. It also implements some more (relatively) recent features such as OPTS
and FEAT commands (`RFC-2398`_), EPRT and EPSV commands to implement IPv6
support (`RFC-2428`_) and MDTM, MLSD, MLST and SIZE commands defined in
`RFC-3659`_ that standardize directory listing. TLS/SSL support (FTPS) as
defined in `RFC-4217`_ is also implemented. Some features like ACCT or SMNT
commands are deliberately not implemented.
RFC-959 - File Transfer Protocol
================================
The base specification of the current File Transfer Protocol.
- `RFC-959`_
- Issued: October 1985
- Status: STANDARD
- Obsoletes: `RFC-765`_
- Updated by: `RFC-1123`_, `RFC-2228`_, `RFC-2640`_, `RFC-2773`_
+-----------+---------------+-------------+--------------------------------------------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| *Command* | *Implemented* | *Milestone* | *Description* | *Notes* |
+===========+===============+=============+==================================================+================================================================================================================================================================================================================+
| ABOR | YES | 0.1.0 | Abort data transfer. | |
+-----------+---------------+-------------+--------------------------------------------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| ACCT | NO | --- | Specify account information. | It will never be implemented (useless). |
+-----------+---------------+-------------+--------------------------------------------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| ALLO | YES | 0.1.0 | Ask for server to allocate enough storage space. | Treated as a NOOP (no operation). |
+-----------+---------------+-------------+--------------------------------------------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| APPE | YES | 0.1.0 | Append data to an existing file. | |
+-----------+---------------+-------------+--------------------------------------------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| CDUP | YES | 0.1.0 | Go to parent directory. | |
+-----------+---------------+-------------+--------------------------------------------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| CWD | YES | 0.1.0 | Change current working directory. | |
+-----------+---------------+-------------+--------------------------------------------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| DELE | YES | 0.1.0 | Delete file. | |
+-----------+---------------+-------------+--------------------------------------------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| HELP | YES | 0.1.0 | Show help. | Accept also arguments. |
+-----------+---------------+-------------+--------------------------------------------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| LIST | YES | 0.1.0 | List files. | Accept also bad arguments like "-ls", "-la", ... |
+-----------+---------------+-------------+--------------------------------------------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| MKD | YES | 0.1.0 | Create directory. | |
+-----------+---------------+-------------+--------------------------------------------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| MODE | YES | 0.1.0 | Set data transfer mode. | "STREAM" mode is supported, "Block" and "Compressed" aren't. |
+-----------+---------------+-------------+--------------------------------------------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| NLST | YES | 0.1.0 | List files in a compact form. | Globbing of wildcards is not supported (for example, ``NLST *.txt`` will not work) |
+-----------+---------------+-------------+--------------------------------------------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| NOOP | YES | 0.1.0 | NOOP (no operation), just do nothing. | |
+-----------+---------------+-------------+--------------------------------------------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| PASS | YES | 0.1.0 | Set user password. | |
+-----------+---------------+-------------+--------------------------------------------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| PASV | YES | 0.1.0 | Set server in passive connection mode. | |
+-----------+---------------+-------------+--------------------------------------------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| PORT | YES | 0.1.0 | Set server in active connection mode. | |
+-----------+---------------+-------------+--------------------------------------------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| PWD | YES | 0.1.0 | Get current working directory. | |
+-----------+---------------+-------------+--------------------------------------------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| QUIT | YES | 0.1.0 | Quit session. | If file transfer is in progress, the connection will remain open until it is finished. |
+-----------+---------------+-------------+--------------------------------------------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| REIN | YES | 0.1.0 | Reinitialize user's current session. | |
+-----------+---------------+-------------+--------------------------------------------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| REST | YES | 0.1.0 | Restart file position. | |
+-----------+---------------+-------------+--------------------------------------------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| RETR | YES | 0.1.0 | Retrieve a file (client's download). | |
+-----------+---------------+-------------+--------------------------------------------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| RMD | YES | 0.1.0 | Remove directory. | |
+-----------+---------------+-------------+--------------------------------------------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| RNFR | YES | 0.1.0 | File renaming (source) | |
+-----------+---------------+-------------+--------------------------------------------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| RNTO | YES | 0.1.0 | File renaming (destination) | |
+-----------+---------------+-------------+--------------------------------------------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| SITE | YES | 0.5.1 | Site specific server services. | No SITE commands aside from "SITE HELP" are implemented by default. The user willing to add support for a specific SITE command has to define a new ``ftp_SITE_CMD`` method in the ``FTPHandler`` subclass. |
+-----------+---------------+-------------+--------------------------------------------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| SMNT | NO | --- | Mount file-system structure. | Will never be implemented (too much system-dependent and almost never used). |
+-----------+---------------+-------------+--------------------------------------------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| STAT | YES | 0.1.0 | Server's status information / File LIST | |
+-----------+---------------+-------------+--------------------------------------------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| STOR | YES | 0.1.0 | Store a file (client's upload). | |
+-----------+---------------+-------------+--------------------------------------------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| STOU | YES | 0.1.0 | Store a file with a unique name. | |
+-----------+---------------+-------------+--------------------------------------------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| STRU | YES | 0.1.0 | Set file structure. | Supports only File type structure by doing a NOOP (no operation). Other structure types (Record and Page) are not implemented. |
+-----------+---------------+-------------+--------------------------------------------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| SYST | YES | 0.1.0 | Get system type. | Always return "UNIX Type: L8" because of the LIST output provided. |
+-----------+---------------+-------------+--------------------------------------------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| TYPE | YES | 0.1.0 | Set current type (Binary/ASCII). | Accept only Binary and ASII TYPEs. Other TYPEs such as EBCDIC are obsoleted, system-dependent and thus not implemented. |
+-----------+---------------+-------------+--------------------------------------------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| USER | YES | 0.1.0 | Set user. | A new USER command could be entered at any point in order to change the access control flushing any user, password, and account information already supplied and beginning the login sequence again. |
+-----------+---------------+-------------+--------------------------------------------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
RFC-1123 - Requirements for Internet Hosts
==========================================
Extends and clarifies some aspects of `RFC-959`_. Introduces new response codes
554 and 555.
- `RFC-1123`_
- Issued: October 1989
- Status: STANDARD
+--------------------------------------+---------------+-------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+---------------------------------------------------------------------------------------+
| *Feature* | *Implemented* | *Milestone* | *Description* | *Notes* |
+======================================+===============+=============+====================================================================================================================================================================================================================================================+=======================================================================================+
| TYPE L 8 as synonym of TYPE I | YES | 0.2.0 | TYPE L 8 command should be treated as synonym of TYPE I ("IMAGE" or binary type). | |
+--------------------------------------+---------------+-------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+---------------------------------------------------------------------------------------+
| PASV is per-transfer | YES | 0.1.0 | PASV must be used for a unique transfer. | If PASV is issued twice data-channel is restarted. |
+--------------------------------------+---------------+-------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+---------------------------------------------------------------------------------------+
| Implied type for LIST and NLST | YES | 0.1.0 | The data returned by a LIST or NLST command SHOULD use an implied TYPE AN. | |
+--------------------------------------+---------------+-------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+---------------------------------------------------------------------------------------+
| STOU format output | YES | 0.2.0 | Defined the exact format output which STOU response must respect ("125/150 FILE filename"). | |
+--------------------------------------+---------------+-------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+---------------------------------------------------------------------------------------+
| Avoid 250 response type on STOU | YES | 0.2.0 | The 250 positive response indicated in `RFC-959`_ has been declared incorrect in `RFC-1123`_ which requires 125/150 instead. | |
+--------------------------------------+---------------+-------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+---------------------------------------------------------------------------------------+
| Handle "Experimental" directory cmds | YES | 0.1.0 | The server should support XCUP, XCWD, XMKD, XPWD and XRMD obsoleted commands and treat them as synonyms for CDUP, CWD, MKD, LIST and RMD commands. | |
+--------------------------------------+---------------+-------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+---------------------------------------------------------------------------------------+
| Idle timeout | YES | 0.5.0 | A Server-FTP process SHOULD have a configurable idle timeout of 5 minutes, which will terminate the process and close the control connection if the server is inactive (i.e., no command or data transfer in progress) for a long period of time. | |
+--------------------------------------+---------------+-------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+---------------------------------------------------------------------------------------+
| Concurrency of data and control | YES | 0.1.0 | Server-FTP should be able to process STAT or ABOR while a data transfer is in progress | Feature granted natively for ALL commands since we're in an asynchronous environment. |
+--------------------------------------+---------------+-------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+---------------------------------------------------------------------------------------+
| 554 response on wrong REST | YES | 0.2.0 | Return a 554 reply may for a command that follows a REST command. The reply indicates that the existing file at the Server-FTP cannot be repositioned as specified in the REST. | |
+--------------------------------------+---------------+-------------+----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+---------------------------------------------------------------------------------------+
RFC-2228 - FTP Security Extensions
==================================
Specifies several security extensions to the base FTP protocol defined in
`RFC-959`_. New commands: AUTH, ADAT, PROT, PBSZ, CCC, MIC, CONF, and ENC. New
response codes: 232, 234, 235, 334, 335, 336, 431, 533, 534, 535, 536, 537,
631, 632, and 633.
- `RFC-2228`_
- Issued: October 1997
- Status: PROPOSED STANDARD
- Updates: `RFC-959`_
+-----------+---------------+-------------+------------------------------------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| *Command* | *Implemented* | *Milestone* | *Description* | *Notes* |
+===========+===============+=============+====================================+====================================================================================================================================================================================================================================+
| AUTH | YES | 1.5.2 | Secure Control Connection | |
+-----------+---------------+-------------+------------------------------------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| CCC | NO | --- | Unsecure Control Connection | |
+-----------+---------------+-------------+------------------------------------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| CONF | NO | --- | Confidentiality Protected Command. | Somewhat obsoleted by `RFC-4217`_. |
+-----------+---------------+-------------+------------------------------------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| EENC | NO | --- | Privacy Protected Command. | Somewhat obsoleted by `RFC-4217`_. |
+-----------+---------------+-------------+------------------------------------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| MIC | NO | --- | Integrity Protected Command. | Somewhat obsoleted by `RFC-4217`_. |
+-----------+---------------+-------------+------------------------------------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| PBSZ | YES | 1.5.2 | Protection Buffer Size. | As per `RFC-4217`_ recommendation, basically a no-op command. |
+-----------+---------------+-------------+------------------------------------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| PROT | YES | 1.5.2 | Data Channel Protection Level. | As per `RFC-4217`_ guide recommendation, only supports "P" and "C" protection levels. |
+-----------+---------------+-------------+------------------------------------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
RFC-2389 - Feature negotiation mechanism for the File Transfer Protocol
=======================================================================
Introduces the new FEAT and OPTS commands.
- `RFC-2389`_
- Issued: August 1998
- Status: PROPOSED STANDARD
+-----------+---------------+-------------+-----------------------------------------------------------------------------------------+---------------------------------------------------------+
| *Command* | *Implemented* | *Milestone* | *Description* | *Notes* |
+===========+===============+=============+=========================================================================================+=========================================================+
| FEAT | YES | 0.3.0 | List new supported commands subsequent `RFC-959`_ | |
+-----------+---------------+-------------+-----------------------------------------------------------------------------------------+---------------------------------------------------------+
| OPTS | YES | 0.3.0 | Set options for certain commands. | MLST is the only command which could be used with OPTS. |
+-----------+---------------+-------------+-----------------------------------------------------------------------------------------+---------------------------------------------------------+
RFC-2428 - FTP Extensions for IPv6 and NATs
===========================================
Introduces the new commands EPRT and EPSV extending FTP to enable its use over
various network protocols, and the new response codes 522 and 229.
- `RFC-2428`_
- Issued: September 1998
- Status: PROPOSED STANDARD
+-----------+---------------+-------------+-----------------------------------------------+---------+
| *Command* | *Implemented* | *Milestone* | *Description* | *Notes* |
+===========+===============+=============+===============================================+=========+
| EPRT | YES | 0.4.0 | Set active data connection over IPv4 or IPv6 | |
+-----------+---------------+-------------+-----------------------------------------------+---------+
| EPSV | YES | 0.4.0 | Set passive data connection over IPv4 or IPv6 | |
+-----------+---------------+-------------+-----------------------------------------------+---------+
RFC-2577 - FTP Security Considerations
======================================
Provides several configuration and implementation suggestions to mitigate some
security concerns, including limiting failed password attempts and third-party
"proxy FTP" transfers, which can be used in "bounce attacks".
- `RFC-2577`_
- Issued: May 1999
- Status: INFORMATIONAL
+--------------------------------------------+---------------+-------------+-------------------------------------------------------------------------------------------------------------------------------------------+---------------+
| *Feature* | *Implemented* | *Milestone* | *Description* | *Notes* |
+============================================+===============+=============+===========================================================================================================================================+===============+
| FTP bounce protection | YES | 0.2.0 | Reject PORT if IP address specified in it does not match client IP address. Drop the incoming (PASV) data connection for the same reason. | Configurable. |
+--------------------------------------------+---------------+-------------+-------------------------------------------------------------------------------------------------------------------------------------------+---------------+
| Restrict PASV/PORT to non privileged ports | YES | 0.2.0 | Reject connections to privileged ports. | Configurable. |
+--------------------------------------------+---------------+-------------+-------------------------------------------------------------------------------------------------------------------------------------------+---------------+
| Brute force protection (1) | YES | 0.1.0 | Disconnect client after a certain number (3 or 5) of wrong authentications. | Configurable. |
+--------------------------------------------+---------------+-------------+-------------------------------------------------------------------------------------------------------------------------------------------+---------------+
| Brute force protection (2) | YES | 0.5.0 | Impose a 5 second delay before replying to an invalid "PASS" command to diminish the efficiency of a brute force attack. | |
+--------------------------------------------+---------------+-------------+-------------------------------------------------------------------------------------------------------------------------------------------+---------------+
| Per-source-IP limit | YES | 0.2.0 | Limit the total number of per-ip control connections to avoid parallel brute-force attack attempts. | Configurable. |
+--------------------------------------------+---------------+-------------+-------------------------------------------------------------------------------------------------------------------------------------------+---------------+
| Do not reject wrong usernames | YES | 0.1.0 | Always return 331 to the USER command to prevent client from determining valid usernames on the server. | |
+--------------------------------------------+---------------+-------------+-------------------------------------------------------------------------------------------------------------------------------------------+---------------+
| Port stealing protection | YES | 0.1.1 | Use random-assigned local ports for data connections. | |
+--------------------------------------------+---------------+-------------+-------------------------------------------------------------------------------------------------------------------------------------------+---------------+
RFC-2640 - Internationalization of the File Transfer Protocol
=============================================================
Extends the FTP protocol to support multiple character sets, in addition to the
original 7-bit ASCII. Introduces the new LANG command.
- `RFC-2640`_
- Issued: July 1999
- Status: PROPOSED STANDARD
- Updates: `RFC-959`_
+----------------------+---------------+-------------+-------------------------------------------------------------------------------------------------------------------------------+---------+
| *Feature* | *Implemented* | *Milestone* | *Description* | *Notes* |
+======================+===============+=============+===============================================================================================================================+=========+
| LANG command | NO | --- | Set current response's language. | |
+----------------------+---------------+-------------+-------------------------------------------------------------------------------------------------------------------------------+---------+
| Support for UNICODE | YES | 1.0.0 | For support of global compatibility it is rencommended that clients and servers use UTF-8 encoding when exchanging pathnames. | |
+----------------------+---------------+-------------+-------------------------------------------------------------------------------------------------------------------------------+---------+
RFC-3659 - Extensions to FTP
============================
Four new commands are added: "SIZE", "MDTM", "MLST", and "MLSD". The existing
command "REST" is modified.
- `RFC-3659`_
- Issued: March 2007
- Status: PROPOSED STANDARD
- Updates: `RFC-959`_
+------------------------------------+---------------+-------------+------------------------------------------------------------------------------------------------------------------------------------------+---------------------------------------------------------------------------------------------------------------------+
| *Feature* | *Implemented* | *Milestone* | *Description* | *Notes* |
+====================================+===============+=============+==========================================================================================================================================+=====================================================================================================================+
| MDTM command | YES | 0.1.0 | Get file's last modification time | |
+------------------------------------+---------------+-------------+------------------------------------------------------------------------------------------------------------------------------------------+---------------------------------------------------------------------------------------------------------------------+
| MLSD command | YES | 0.3.0 | Get directory list in a standardized form. | |
+------------------------------------+---------------+-------------+------------------------------------------------------------------------------------------------------------------------------------------+---------------------------------------------------------------------------------------------------------------------+
| MLST command | YES | 0.3.0 | Get file information in a standardized form. | |
+------------------------------------+---------------+-------------+------------------------------------------------------------------------------------------------------------------------------------------+---------------------------------------------------------------------------------------------------------------------+
| SIZE command | YES | 0.1.0 | Get file size. | In case of ASCII TYPE it does not perform the ASCII conversion to avoid DoS conditions (see FAQs for more details). |
+------------------------------------+---------------+-------------+------------------------------------------------------------------------------------------------------------------------------------------+---------------------------------------------------------------------------------------------------------------------+
| TVSF mechanism | YES | 0.1.0 | Provide a file system naming conventions modeled loosely upon those of the Unix file system supporting relative and absolute path names. | |
+------------------------------------+---------------+-------------+------------------------------------------------------------------------------------------------------------------------------------------+---------------------------------------------------------------------------------------------------------------------+
| Minimum required set of MLST facts | YES | 0.3.0 | If conceivably possible, support at least the type, perm, size, unique, and modify MLSX command facts. | |
+------------------------------------+---------------+-------------+------------------------------------------------------------------------------------------------------------------------------------------+---------------------------------------------------------------------------------------------------------------------+
| GMT should be used for timestamps | YES | 0.6.0 | All times reported by MDTM, LIST, MLSD and MLST commands must be in GMT times | Possibility to change time display between GMT and local time provided as "use_gmt_times" attribute |
+------------------------------------+---------------+-------------+------------------------------------------------------------------------------------------------------------------------------------------+---------------------------------------------------------------------------------------------------------------------+
RFC-4217 - Securing FTP with TLS
================================
Provides a description on how to implement TLS as a security mechanism to
secure FTP clients and/or servers.
- `RFC-4217`_
- Issued: October 2005
- Status: STANDARD
- Updates: `RFC-959`_, `RFC-2246`_, `RFC-2228`_
+-----------+---------------+-------------+------------------------------------+---------------------------------------------+
| *Command* | *Implemented* | *Milestone* | *Description* | *Notes* |
+===========+===============+=============+====================================+=============================================+
| AUTH | YES | --- | Secure control connection | |
+-----------+---------------+-------------+------------------------------------+---------------------------------------------+
| CCC | NO | --- | Unsecure control connection | |
+-----------+---------------+-------------+------------------------------------+---------------------------------------------+
| PBSZ | YES | --- | Protection Buffer Size. | Implemented as as a no-op as recommended. |
+-----------+---------------+-------------+------------------------------------+---------------------------------------------+
| PROT | YES | --- | Data Channel Protection Level. | Support only "P" and "C" protection levels. |
+-----------+---------------+-------------+------------------------------------+---------------------------------------------+
RFC-8996 - Deprecate TLS 1.0 and 1.1
====================================
- `RFC-8996`_
- Issued: March 2021
- Status: STANDARD
- Implemented by pyftpdlib: NO (not by default).
Unofficial commands
===================
These are commands not officialy included in any RFC but many FTP servers
implement them.
+------------+---------------+-------------+-------------------+---------+
| *Command* | *Implemented* | *Milestone* | *Description* | *Notes* |
+============+===============+=============+===================+=========+
| SITE CHMOD | YES | 0.7.0 | Change file mode. | |
+------------+---------------+-------------+-------------------+---------+
.. _`RFC-1123`: https://datatracker.ietf.org/doc/html/rfc1123
.. _`RFC-2228`: https://datatracker.ietf.org/doc/html/rfc2228
.. _`RFC-2246`: https://datatracker.ietf.org/doc/html/rfc2246
.. _`RFC-2389`: https://datatracker.ietf.org/doc/html/rfc2389
.. _`RFC-2398`: https://datatracker.ietf.org/doc/html/rfc2389
.. _`RFC-2428`: https://datatracker.ietf.org/doc/html/rfc2428
.. _`RFC-2577`: https://datatracker.ietf.org/doc/html/rfc2577
.. _`RFC-2640`: https://datatracker.ietf.org/doc/html/rfc2640
.. _`RFC-2773`: https://datatracker.ietf.org/doc/html/rfc2773
.. _`RFC-3659`: https://datatracker.ietf.org/doc/html/rfc3659
.. _`RFC-4217`: https://datatracker.ietf.org/doc/html/rfc4217
.. _`RFC-765`: https://datatracker.ietf.org/doc/html/rfc765
.. _`RFC-8996`: https://datatracker.ietf.org/doc/html/rfc8996
.. _`RFC-959`: https://datatracker.ietf.org/doc/html/rfc959
|
