ftp: CURLOPT_FTP_SKIP_PASV_IP by default

The command line tool also independently sets --ftp-skip-pasv-ip by default. Ten test cases updated to adapt the modified --libcurl output. Bug: https://curl.se/docs/CVE-2020-8284.html CVE-2020-8284 Reported-by: Varnavas Papaioannou
author: Daniel Stenberg <daniel@haxx.se> 2020-11-24 14:56:57 +0100
committer: Daniel Stenberg <daniel@haxx.se> 2020-12-07 08:38:05 +0100
commit: ec9cc725d598ac77de7b6df8afeec292b3c8ad46 (patch)
tree: 1b058703873aa904c9815549903d867542d96cbb /lib
parent: abd846c374c5269809ce11740754bc6f00a0b193 (diff)
download: curl-ec9cc725d598ac77de7b6df8afeec292b3c8ad46.tar.gz
1 files changed, 1 insertions, 0 deletions
diff --git a/lib/url.c b/lib/url.c
index f8b2a0030..2b0ba87ba 100644
--- a/lib/url.c
+++ b/lib/url.c
@@ -497,6 +497,7 @@ CURLcode Curl_init_userdefined(struct Curl_easy *data)
   set->ftp_use_eprt = TRUE;   /* FTP defaults to EPRT operations */
   set->ftp_use_pret = FALSE;  /* mainly useful for drftpd servers */
   set->ftp_filemethod = FTPFILE_MULTICWD;
+  set->ftp_skip_ip = TRUE;    /* skip PASV IP by default */
 #endif
   set->dns_cache_timeout = 60; /* Timeout every 60 seconds by default */
author	Daniel Stenberg <daniel@haxx.se>	2020-11-24 14:56:57 +0100
committer	Daniel Stenberg <daniel@haxx.se>	2020-12-07 08:38:05 +0100
commit	ec9cc725d598ac77de7b6df8afeec292b3c8ad46 (patch)
tree	1b058703873aa904c9815549903d867542d96cbb /lib
parent	abd846c374c5269809ce11740754bc6f00a0b193 (diff)
download	curl-ec9cc725d598ac77de7b6df8afeec292b3c8ad46.tar.gz