Re: Can't ftp from Linux box to windows-server - setsockopt

From: Bernard (qbernard_at_hotmail.com.discuss)
Date: 11/30/04 

Date: Tue, 30 Nov 2004 18:58:49 +0800

It could be the ftp server passive port range was blocked.
have you try active mode connection to the server ?

try ftp.exe from a windows client machines. 

-- 
Regards,
Bernard Cheah
http://www.tryiis.com/
http://support.microsoft.com/
http://www.msmvps.com/bernard/
"B H" <check4junk@gmail.com> wrote in message
news:HdXqd.10266$rh1.255511@news2.e.nsc.no...
> "Bernard" <qbernard@hotmail.com.discuss> wrote in message
> news:Om3p%23Pq0EHA.2196@TK2MSFTNGP14.phx.gbl...
> > Can you post the complete debug output..
> > have you look at the IIS ftp server log file ?
>
> OK. Here's some more info. Log of session and list of "nmap localhost".
> Unfortunately getting an ftp-log at my isp is not so easy.
> ===
> [mylocalusername@dhcppc1 ~]$ ftp -d www.mysite.com
> Connected to www.mysite.com (aaa.bbb.ccc.ddd).
> 220 iis11 Microsoft FTP Service (Version 4.0).
> Name (www.mysite.com:mylocalusername): myusernameatftpserver
> ---> USER myusernameatftpserver
> 331 Password required for myusernameatftpserver.
> Password:
> ---> PASS XXXX
> 230-Welcome to blablabla
> 230 User myusernameatftpserver logged in.
> ---> SYST
> 215 Windows_NT version 4.0
> Remote system type is Windows_NT.
> ftp> ls
> ftp: setsockopt (ignored): Permission denied
> ---> PASV
> 227 Entering Passive Mode (aaa,bbb,ccc,ddd,9,202).
>
> [program hangs and must be CTRL-C'ed]
> ===
> A "nmap localhost" command at my Linux-box:
>
> [mylocalusername@dhcppc1 ~]$ nmap localhost
>
> Starting nmap 3.48 ( http://www.insecure.org/nmap/ ) at 2004-11-30 08:33
CET
> Interesting ports on localhost.localdomain (127.0.0.1):
> (The 1651 ports scanned but not shown below are in state: closed)
> PORT      STATE SERVICE
> 22/tcp    open  ssh
> 25/tcp    open  smtp
> 111/tcp   open  rpcbind
> 631/tcp   open  ipp
> 32770/tcp open  sometimes-rpc3
> 32771/tcp open  sometimes-rpc5
>
> Nmap run completed -- 1 IP address (1 host up) scanned in 0.706 seconds
> ===
>
> Borge
>
>

Relevant Pages

  • RE: blocking IPs for FTP server
    ... With Port Sentry you can use the Advanced Stealth Scan Detection. ... blocking IPs for FTP server ... holding too many open connections. ...
    (Security-Basics)
  • RE: Hidden windows ports, files and services.
    ... also apply for IE's cache. ... be the work of a root kit of some sort. ... and I'd like to analyze the ftp server. ... |was by doing an nmap port scan of the system. ...
    (Security-Basics)
  • Re: Hidden windows ports, files and services.
    ... and I'd like to analyze the ftp server. ... Prior to XP SP2, I used to be able to go through the c$ share and see ... was by doing an nmap port scan of the system. ... downloaded fresh version of each and tried again. ...
    (Security-Basics)
  • Re: Ports necessary for running a FTP-server?
    ... The FTP server should be listening on the LAN IP address of the Winroute ... The port mapping should redirect FTP traffic to the Winroute LAN ... >> install will not allow an Internet client to connect to a Winroute ...
    (comp.security.firewalls)
  • Re: Why do i need to use passive transfers?
    ... data connection from its TCP port 20 to a port specified by the FTP client ... The FTP server in PORT mode does not try ... The reason why PASV mode works so often behind a firewall is that the ... establish the data connection with the client. ...
    (comp.security.firewalls)