Apache FtpServer 1.2.1 Release

New Features in 1.2.1

This release includes many fixes, and now depends on MINA core 2.2.4.

Here is the list of fixes and modifications:

o FTPSERVER-515: Bump Apache Log4j from 2.17.2 to 2.19.0 o FTPSERVER-510:Update Apache parent POM from 25 to 26 o FTPSERVER-509: Enable GitHub Action build o FTPSERVER-506: Fix binary compatibility issues. o FTPSERVER-499: FtpResponseEncoder is not thread safe o FTPSERVER-446: Implementing User Manager not possible in OSGi environment

Otherwise, the following features have been added: o Support for SHA256 and SHA512 encryption o Use ThreadLocal for FtpResponseEncoder.ENCODER and SimpleDateFormat o Make build reproductible

Getting the Binary Distributions

Verify the Integrity of Downloads

It is essential that you verify the integrity of the downloaded files using the PGP signatures. The PGP signatures can be verified using PGP or GPG. Begin by following these steps:

1. Download the KEYS

2. Download the asc signature file for the relevant distribution

3. Verify the signatures using the following commands, depending on your use of PGP or GPG:

    $ pgpk -a KEYS
    $ pgpv apache-ftpserver-1.2.1-bin.tar.gz.asc
   

   or

    $ pgp -ka KEYS
    $ pgp apache-ftpserver-1.2.1-bin.tar.gz.asc apache-ftpserver-1.2.1-bin.tar.gz
   

   or

    $ gpg --import KEYS
    $ gpg --verify apache-ftpserver-1.2.1-bin.tar.gz.asc apache-ftpserver-1.2.1-bin.tar.gz
   

Getting the Binaries using Maven 2

To use this release in your maven project, the proper dependency configuration that you should use in your Maven POM is:

<dependency>
    <groupId>org.apache.ftpserver</groupId>
    <artifactId>ftpserver-core</artifactId>
    <version>1.2.1</version>
</dependency>

Getting the Source Code

Source Distributions

Git Tag Checkout

$ git clone https://gitbox.apache.org/repos/asf/mina-ftpserver.git
$ git checkout ftpserver-parent-1.2.1

You are now on 1.2.1 branch.