Active/passive ftp is different in a active context the data sender initiates the file transmission (connect call), the receiver of a file listens, wheras with a passive connection the ftp-client allways initiates a connection for either upload or download.
Passive is ideal for going from a secured perimeter to the outside world.... anonymously, not requiring a password.
If you need file transfer from the server to the client why not through HTTP/HTTPS directly, and have the software on your server offer a local filecopy either through ftp (internal), mounted disk or whatever means is possible.
Most HTTP servers can be configured to show a directory and ha a download from there like the FTP client in IE simulates. Much easier, no hassels less security risk if use combined with SSL (HTTPS).
There are a boatload of tools available (Curl from
http://curl.haxx.se (also in linkable code); there is wget used a lot from scripting).
Besides limitation, you should consider loggingin without encryption equal to announcing the passwords of your clients accounts to the world.
All info is clear to be read at any point on the connection between your server and the clients system.
BTW, the website doesn't quite work in firefox, or a nailed down IE (no foreign ActiveX) on a nailed down system (No installs).