Passive FTP

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

From: Burtsev Dmitry (burtsev_at_removethispart.km.ru)
Date: 10/26/04 

Date: Tue, 26 Oct 2004 13:57:31 +0400

Hello.
I have one client, firewalled by ISA2000 (inegrated mode). He want to be
able to connect to passive ftp. His passive ftp work on non-standart port
and need SSL encryption. Ftp client - FlashFXP.
I will be gald any suggestion.

Here log of connection.

WinSock 2.0 -- OpenSSL 0.9.7d 17 Mar 2004

[R] Connecting to SERVER IP -> IP=SERVER IP PORT=2121

[R] Connected to SERVER IP

[R] 220 FTP (glftpd 1.32_Linux+TLS) ready.

[R] AUTH TLS

[R] 234 AUTH TLS successful

[R] Connected. Negotiating TLSv1 session..

[R] TLSv1 negotiation successful...

[R] TLSv1 encrypted session using cipher DHE-DSS-AES256-SHA (256 bits)

[R] PBSZ 0

[R] 200 PBSZ 0 successful

[R] USER USER

[R] 331 Password required for USER.

[R] PASS (hidden)

[R] 230- _____

[R] 230- ______________________________|__ |____
________________________________

[R] 230- \ _ / _ / _ / | | _ / _ / _
/

[R] 230- \ \ / / / /____/. | | / / /____/.
/_____/

[R] 230- \________/____/ /______ |___|____|___/ /______ |____|

[R] 230- .-=----------- /____/ ---- |____| --------- /____/ ----
|____| -------=-.

[R] 230- [0328 layt ] I just setup zipscript, so be careful in upp

[R] 230- [0918 layt ] incomig & /pub/Movies moved to dedicated 80G HDDs

[R] 230- [0918 layt ] movies from /incoming moved to /pub/Movies

[R] 230- [0918 layt ] zipscript fixed

[R] 230-
`-=-------------------------------------------------------------------=-'

[R] 230- `-----( Type 'site onel MESSAGE' to enter your
message )-----'

[R] 230 User Jodolla logged in.

[R] SYST

[R] 215 UNIX Type: L8

[R] FEAT

[R] 211- Extensions supported

[R] AUTH TLS

[R] AUTH SSL

[R] PBSZ

[R] PROT

[R] CPSV

[R] MDTM

[R] SIZE

[R] SYST

[R] RAIDEN_SUX

[R] 211 END

[R] PWD

[R] 257 "/" is current directory.

[R] TYPE A

[R] 200 Type set to A.

[R] PROT P

[R] 200 Protection set to Private

[R] PASV

[R] 227 Entering Passive Mode (SERVER IP,173,148)

[R] Opening data connection IP: SERVER IP PORT: 44436

[R] Data Socket Error: Connection refused

[R] List Error

[R] PASV

[R] 227 Entering Passive Mode (SERVER IP,173,154)

[R] Opening data connection IP: SERVER IP PORT: 44442

[R] Data Socket Error: Connection refused

[R] List Error 

-- 
Dmitry Burtsev [burtsev@removethis.km.ru]

Relevant Pages

  • Re: Security setting to prevent passive ftp?
    ... On Sat, 23 Jul 2005, Alexander Dalloz wrote: ... >> For my users that use passive ftp, when they connect to ncftpd on my ... >> sends data, the connection gets dropped. ... Clemson University Math Sciences ...
    (Fedora)
  • Re: Error when FTPing
    ... >firewall s/w hence why we upgraded. ... >connection they can't connect they get connection failure. ... well can they get *any* kind of passive FTP connection working to ... Internet Explorer? ...
    (microsoft.public.inetserver.iis.ftp)
  • RE: NAT firewalls possibly insecure by nature?
    ... That's not my understanding of passive ftp. ... there are mechanisms to send information back along that connection. ... case in point is passive ftp, which opens a connection, and then requests ... NAT firewalls possibly insecure by nature? ...
    (Focus-Microsoft)
  • Re: IE6 and ftp
    ... Passive Ftp, enabled or disabled, on my pc it doesn't change the final result... ... Even the connection to ftp.microsoft.com is denied... ... Is there bug in ie6? ...
    (microsoft.public.windows.inetexplorer.ie6.browser)