RFC 4823, "FTP Transport for Secure Peer-to-Peer Business Data Interchange over the Internet", April 2007Source of RFC: ediint (app)
See Also: RFC 4823 w/ inline errata
Errata ID: 6234
Publication Format(s) : TEXT
Reported By: Benjamin Kaduk
Date Reported: 2020-07-23
Verifier Name: Barry Leiba
Date Verified: 2020-08-04
Section 6.1 says:
the AUTH command described within . While any authentication mechanism based upon  MAY be utilized, AUTH TLS (as described in ) MUST be supported. (Note that  relies on TLS Version 1.0 , not Version 1.1 .)
It should say:
the AUTH command described within . While any authentication mechanism based upon  MAY be utilized, AUTH TLS (as described in ) MUST be supported. (Note that TLS Version 1.1  is the current version of TLS, though  references the older Version 1.0 .)
RFC 4217 (reference ) does not specifically require TLS version 1.0. It references RFC 2246 (TLS 1.0) solely because that was the only version of TLS specified at the time of its publication. Securing FTP with TLS merely requires a version of TLS, not a specific version of TLS, so this document should refer to the current version of TLS at the time of its own publication.
Note that  is listed as a normative reference and  an informative reference; in light of the above correction the normative/informative statuses should be swapped.