C
chrisg
Didn’t see any contact info for the current maintainer, sorry. Tried
to email the orig author but it came back undeliverable.
Trying to connect to a FTP (TLS) server and get/put files. I can
connect to the ftp site via FileZilla app in windows and transfer
files using FTP over TLS explicit encryption, port 21, Passive mode. I
first had to accept cert.
I recently downloaded http://search.cpan.org/CPAN/authors/id/C/CL/CLEACH/Net-FTPSSL-0.08.tar.gz
Then also http://search.cpan.org/dist/IO-Socket-SSL/SSL.pm I set them
up on my suse linux server manually. I get a “534 Fallback to [C]”
error when trying to get/put files on the external FTP server.
IO::Socket::SSL said "You have version 1.30 of Net::SSLeay. Support
for subjectAltNames in certificates is only available in Version
I have the following test script on my linux suse box:
#! /usr/bin/perl
use strict;
use warnings;
use Net::FTPSSL;
my $ftpsite = "ftp.foo.com";
my $ftpuser = "1111";
my $ftppwd = "123456";
my $ftps = Net::FTPSSL->new($ftpsite, Port => 21, Encryption => "E",
Debug => 1) or die "Cannot connect to $ftpsite";
$ftps->login($ftpuser, $ftppwd) or die "Cannot login: ", $ftps-
$ftps->cwd("/report_broadcasts") or die "Cannot change working
directory ", $ftps->last_message;
if(!$ftps->get("test.txt")) {
print "Cannot get file: ", $ftps->last_message;
}
$ftps->quit;
Here’s what I get. Apparently the "cwd" works, but "get" doesn't:
SKT <<< 220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------
SKT <<< 220-You are user number 4 of 50 allowed.
SKT <<< 220-Local time is now 20:20. Server port: 21.
SKT <<< 220-This is a private system - No anonymous login
SKT <<< 220-IPv6 connections are also welcome on this server.
SKT <<< 220 You will be disconnected after 5 minutes of inactivity.
SKT >>> AUTH TLS
SKT <<< 234 AUTH TLS OK.<<< 230-Your bandwidth usage is restricted
<<< 230-User 1111 has group access to: nobody
<<< 230 OK. Current restricted directory is /
Cannot get file: 534 Fallback to [C]
In Filezilla when I do the same thing I get:
Status: Connecting to ftp.foo.com ...
Status: Connected with ftp.foo.com, negotiating SSL connection...
Response: 220---------- Welcome to Pure-FTPd [privsep] [TLS]
----------
Response: 220-You are user number 3 of 50 allowed.
Response: 220-Local time is now 19:52. Server port: 21.
Response: 220-This is a private system - No anonymous login
Response: 220-IPv6 connections are also welcome on this server.
Response: 220 You will be disconnected after 5 minutes of inactivity.
Command: AUTH TLS
Response: 234 AUTH TLS OK.
Status: SSL connection established. Waiting for welcome message...
Command: USER 1111
Response: 331 User 1111 OK. Password required
Command: PASS **********
Response: 230-Your bandwidth usage is restricted
Response: 230-User 1111 has group access to: nobody
Response: 230 OK. Current restricted directory is /
Command: FEAT
Response: 211-Extensions supported:
Response: EPRT
Response: IDLE
Response: MDTM
Response: SIZE
Response: REST STREAM
Response: MLST
type*;size*;sizd*;modify*;UNIX.mode*;UNIX.uid*;UNIX.gid*;unique*;
Response: MLSD
Response: ESTP
Response: PASV
Response: EPSV
Response: SPSV
Response: ESTA
Response: AUTH TLS
Response: PBSZ
Response: PROT
Response: 211 End.
Command: SYST
Response: 215 UNIX Type: L8
Command: PBSZ 0
Response: 200 PBSZ=0
Command: PROT P
Response: 534 Fallback to [C]
Status: Connected
Status: Retrieving directory listing...
Command: PWD
Response: 257 "/" is your current location
Command: TYPE A
Response: 200 TYPE is now ASCII
Command: PASV
Response: 227 Entering Passive Mode (4,78,144,125,235,216)
Command: LIST
Response: 150 Accepted data connection
Response: 226-Options: -l
Trace: drwxr-xr-x 2 0 0 4096 Apr 15 11:20 lists
Trace: drwxr-xr-x 2 0 0 4096 Apr 16 15:31
report_broadcasts
Trace: drwxr-xr-x 2 0 0 4096 Apr 16 00:06
report_endofday
Trace: drwxr-xr-x 5 0 0 4096 Apr 13 13:45
schedule
Response: 226 4 matches total
Status: Directory listing successful
Status: Retrieving directory listing...
Command: CWD report_broadcasts
Response: 250 OK. Current directory is /report_broadcasts
Command: PWD
Response: 257 "/report_broadcasts" is your current location
Command: TYPE A
Response: 200 TYPE is now ASCII
Command: PASV
Response: 227 Entering Passive Mode (4,78,144,125,235,168)
Command: LIST
Response: 150 Accepted data connection
Response: 226-Options: -l
Trace: -rw-r--r-- 1 0 0 35 Apr 15 19:19
test.txt
Response: 226 15 matches total
Status: Directory listing successful
Status: Starting download of /report_broadcasts/test.txt
Command: TYPE A
Response: 200 TYPE is now ASCII
Command: PASV
Response: 227 Entering Passive Mode (4,78,144,125,235,146)
Command: RETR test.txt
Response: 150 Accepted data connection
Response: 226-File successfully transferred
Response: 226 0.001 seconds (measured here), 51.70 Kbytes per second
Status: Download successful
Any ideas?
to email the orig author but it came back undeliverable.
Trying to connect to a FTP (TLS) server and get/put files. I can
connect to the ftp site via FileZilla app in windows and transfer
files using FTP over TLS explicit encryption, port 21, Passive mode. I
first had to accept cert.
I recently downloaded http://search.cpan.org/CPAN/authors/id/C/CL/CLEACH/Net-FTPSSL-0.08.tar.gz
Then also http://search.cpan.org/dist/IO-Socket-SSL/SSL.pm I set them
up on my suse linux server manually. I get a “534 Fallback to [C]”
error when trying to get/put files on the external FTP server.
IO::Socket::SSL said "You have version 1.30 of Net::SSLeay. Support
for subjectAltNames in certificates is only available in Version
=1.33" but I don't think that should matter.
I have the following test script on my linux suse box:
#! /usr/bin/perl
use strict;
use warnings;
use Net::FTPSSL;
my $ftpsite = "ftp.foo.com";
my $ftpuser = "1111";
my $ftppwd = "123456";
my $ftps = Net::FTPSSL->new($ftpsite, Port => 21, Encryption => "E",
Debug => 1) or die "Cannot connect to $ftpsite";
$ftps->login($ftpuser, $ftppwd) or die "Cannot login: ", $ftps-
$ftps->command("PASV");last_message;
$ftps->cwd("/report_broadcasts") or die "Cannot change working
directory ", $ftps->last_message;
if(!$ftps->get("test.txt")) {
print "Cannot get file: ", $ftps->last_message;
}
$ftps->quit;
Here’s what I get. Apparently the "cwd" works, but "get" doesn't:
SKT <<< 220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------
SKT <<< 220-You are user number 4 of 50 allowed.
SKT <<< 220-Local time is now 20:20. Server port: 21.
SKT <<< 220-This is a private system - No anonymous login
SKT <<< 220-IPv6 connections are also welcome on this server.
SKT <<< 220 You will be disconnected after 5 minutes of inactivity.
SKT >>> AUTH TLS
SKT <<< 234 AUTH TLS OK.<<< 230-Your bandwidth usage is restricted
<<< 230-User 1111 has group access to: nobody
<<< 230 OK. Current restricted directory is /
<<< 227 Entering Passive Mode (4,78,144,125,235,235)PASV
CWD /report_broadcasts <<< 227 Entering Passive Mode (4,78,144,125,235,152)
PBSZ 0 <<< 250 OK. Current directory is /report_broadcasts
PROT P <<< 200 PBSZ=0
PASV <<< 534 Fallback to [C]
QUIT
Cannot get file: 534 Fallback to [C]
In Filezilla when I do the same thing I get:
Status: Connecting to ftp.foo.com ...
Status: Connected with ftp.foo.com, negotiating SSL connection...
Response: 220---------- Welcome to Pure-FTPd [privsep] [TLS]
----------
Response: 220-You are user number 3 of 50 allowed.
Response: 220-Local time is now 19:52. Server port: 21.
Response: 220-This is a private system - No anonymous login
Response: 220-IPv6 connections are also welcome on this server.
Response: 220 You will be disconnected after 5 minutes of inactivity.
Command: AUTH TLS
Response: 234 AUTH TLS OK.
Status: SSL connection established. Waiting for welcome message...
Command: USER 1111
Response: 331 User 1111 OK. Password required
Command: PASS **********
Response: 230-Your bandwidth usage is restricted
Response: 230-User 1111 has group access to: nobody
Response: 230 OK. Current restricted directory is /
Command: FEAT
Response: 211-Extensions supported:
Response: EPRT
Response: IDLE
Response: MDTM
Response: SIZE
Response: REST STREAM
Response: MLST
type*;size*;sizd*;modify*;UNIX.mode*;UNIX.uid*;UNIX.gid*;unique*;
Response: MLSD
Response: ESTP
Response: PASV
Response: EPSV
Response: SPSV
Response: ESTA
Response: AUTH TLS
Response: PBSZ
Response: PROT
Response: 211 End.
Command: SYST
Response: 215 UNIX Type: L8
Command: PBSZ 0
Response: 200 PBSZ=0
Command: PROT P
Response: 534 Fallback to [C]
Status: Connected
Status: Retrieving directory listing...
Command: PWD
Response: 257 "/" is your current location
Command: TYPE A
Response: 200 TYPE is now ASCII
Command: PASV
Response: 227 Entering Passive Mode (4,78,144,125,235,216)
Command: LIST
Response: 150 Accepted data connection
Response: 226-Options: -l
Trace: drwxr-xr-x 2 0 0 4096 Apr 15 11:20 lists
Trace: drwxr-xr-x 2 0 0 4096 Apr 16 15:31
report_broadcasts
Trace: drwxr-xr-x 2 0 0 4096 Apr 16 00:06
report_endofday
Trace: drwxr-xr-x 5 0 0 4096 Apr 13 13:45
schedule
Response: 226 4 matches total
Status: Directory listing successful
Status: Retrieving directory listing...
Command: CWD report_broadcasts
Response: 250 OK. Current directory is /report_broadcasts
Command: PWD
Response: 257 "/report_broadcasts" is your current location
Command: TYPE A
Response: 200 TYPE is now ASCII
Command: PASV
Response: 227 Entering Passive Mode (4,78,144,125,235,168)
Command: LIST
Response: 150 Accepted data connection
Response: 226-Options: -l
Trace: -rw-r--r-- 1 0 0 35 Apr 15 19:19
test.txt
Response: 226 15 matches total
Status: Directory listing successful
Status: Starting download of /report_broadcasts/test.txt
Command: TYPE A
Response: 200 TYPE is now ASCII
Command: PASV
Response: 227 Entering Passive Mode (4,78,144,125,235,146)
Command: RETR test.txt
Response: 150 Accepted data connection
Response: 226-File successfully transferred
Response: 226 0.001 seconds (measured here), 51.70 Kbytes per second
Status: Download successful
Any ideas?