You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The scope of this ticket is to try to improve the logging of failures with encrypted channels (specifically TLS and SSH) that occur due to renegotiations/rekeying. Not all TLS or SSH clients handle such situations well, especially if it is the server, and not the client, that initiates such rekeys.
This came up recently on the ProFTPD users mailing list. The key clue in that case was the "upload failures after 2GB of a 4GB file" when using SFTP; that 2GB size aligned with the default SFTPRekey size parameter. However, this correlation is not immediately obvious, and we want to improve the logging to make it obvious.
The text was updated successfully, but these errors were encountered:
Note that as of Bug#4443, TLS renegotiations are disabled by default. That said, having TLS logging that helps to pinpoint TLS issues related to renegotiations (when enabled) would still be a good thing to have.
The scope of this ticket is to try to improve the logging of failures with encrypted channels (specifically TLS and SSH) that occur due to renegotiations/rekeying. Not all TLS or SSH clients handle such situations well, especially if it is the server, and not the client, that initiates such rekeys.
This came up recently on the ProFTPD users mailing list. The key clue in that case was the "upload failures after 2GB of a 4GB file" when using SFTP; that 2GB size aligned with the default
SFTPRekey
size parameter. However, this correlation is not immediately obvious, and we want to improve the logging to make it obvious.The text was updated successfully, but these errors were encountered: