Message 64093 - Python tracker (original) (raw)

As you point out, the other classes should be fixed. The old client-side protocol was never very well thought out, IMHO. Continuing to propagate it would be a mistake. Bill

On Wed, Mar 19, 2008 at 12:22 PM, Giampaolo Rodola' <report@bugs.python.org> wrote:

Giampaolo Rodola' <billiejoex@users.sourceforge.net> added the comment:

Another thing to look at is what the useful arguments are to pass in for TLS usage over FTP. If, for example, the client needs to validate the server's certificate or identity, provision should be made for a file of cacerts to be passed to the FTP_TLS instance. Passing in a keyfile and certfile is usually only necessary when the client uses them to identify itself to the server.

I drew from the SSL classes defined in httplib, imaplib, poplib, smtplib and urllib modules which accept a keyfile and a certfile in the class constructor so I thought it was the "right way". Is there a reason why the FTP protocol should behave differently as you have described?