An updated lftp package that fixes various bugs is now available for Red Hat Enterprise Linux 5.
LFTP is a sophisticated file transfer program for the FTP and HTTP protocols. Like bash, it has job control and uses the readline library for input. It has bookmarks, built-in mirroring, and can transfer several files in parallel. It is designed with reliability in mind.
The GnuTLS library does not support some previously offered TLS ciphers. As a consequence, some users experienced the error message, "Fatal error: gnutls_handshake: A TLS fatal alert has been received", when attempting to use SSL. With this update, it is now possible to force an SSLv3 connection instead of TLS using the "set ftp:ssl-auth SSL" configuration directive for servers without support for any of the TLS ciphers listed. This works both for implicit and explicit FTPS.
Prior to this update, the lftp client was not able to support "CLEAR COMMAND CHANNEL" (CCC) mode (RFC4217). Without CCC, Layer 7 aware firewalls cannot see the PASV port statements necessary to open the requisite data ports for transfers. This updated package fixes the described weakness and the lftp client supports CCC mode as intended. As a result data transfers through Layer 7 aware firewalls no longer fail in the scenario described.
Prior to this update, when the lftp client was started with the "-e" option and the mget command was used, the returned exit status code was zero, (success), when creating a connection to a URL had failed due to the specified URL being non-existent. This update applies a patch that improves the error handling in mget. As a result, the lftp client now returns exit status code '1', indicating a failure, when creating a connection fails in the scenario described.
All users of lftp are advised to upgrade to this updated package, which fixes these bugs.