Since proxy-suite Version 1.9 the ftp-proxy supports user
authentication. To enable it, the UserAuthType
configuration option have to be set to the name of the
mechanism used, i.e. ldap (currently the only one).
For more information on LDAP based authentication, see also the Using an LDAP Directory section.
Per default, the normal "ftpuser" and "ftppass" from USER and PASS FTP commands are used for the authentication. This may be usefull especially in "inbound" mode of the proxy.
In "outbound" mode, it may be usefull to use an extended enconding
of an "authuser" and "authpass" additionally to the normal "ftpuser"
and "ftppass" using the UserAuthMagic option supported by
some FTP clients, i.e. "@auth" for NcFTP, type 5.
The UserAuthMagic configuration variable can be set to
either auth@ or @auth, where "@" is an encoding
separator character and can also be set to an different one, i.e.
to ":", using auth: or :auth.
If the "auth" keyword is prepended by the separator character, the
USER command will be parsed as "ftpuser@authuser" or in combination
with the AllowMagicUser as "ftpuser@authuser@host:port"
and the PASS FTP command as "ftppass@authpass".
If the "auth" keyword is followed by the separator character, the parsing is done in the different order as "authuser@ftpuser".