Hide Forgot
+++ This bug was initially created as a clone of Bug #1305970 +++ Description of problem: With --disable-epsv, curl should not attempt to use EPSV mode no matter what. When the host name in URL is 'localhost' or 'localhost.localdomain', EPSV is not disabled. On the other hand, when 127.0.0.1 is used instead, --disable-epsv is respected. Version-Release number of selected component (if applicable): curl-7.29.0-25.el7.x86_64 Steps to reproduce: # yum -y install vsftpd # echo OK > /var/ftp/pub/test # service vsftpd start # curl -v --disable-epsv ftp://localhost/pub/test Actual results: > EPSV * Connect data stream passively < 229 Entering Extended Passive Mode (|||20246|). * Trying 127.0.0.1... connected Expected results: > PASV * Connect data stream passively < 227 Entering Passive Mode (127,0,0,1,251,224). * Trying 127.0.0.1... connected
upstream commit: https://github.com/curl/curl/commit/curl-7_47_1-30-g4ef6b2d
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://rhn.redhat.com/errata/RHSA-2016-2575.html