FTPS issue with specific client

Need help with FileZilla Server? Something does not work as expected? In this forum you may find an answer.

Moderator: Project members

Post Reply
Message
Author
atakacs
504 Command not implemented
Posts: 9
Joined: 2012-01-19 13:59
First name: Alexandre
Last name: Takacs
Location: CH

FTPS issue with specific client

#1 Post by atakacs » 2021-06-23 16:02

I am having an issue setting up a FTPS server using FileZilla server v 0.9.6 on a windows machine

Basically everything work as intended when I am connecting form FileZilla client or using https://ftptest.net

Code: Select all

(000048)6/23/2021 16:05:43 PM - (not logged in) (*.*.*.*)> Connected on port 2221, sending welcome message...
(000048)6/23/2021 16:05:43 PM - (not logged in) (*.*.*.*)> 220 This is not a public server !
(000048)6/23/2021 16:05:43 PM - (not logged in) (*.*.*.*)> AUTH TLS
(000048)6/23/2021 16:05:43 PM - (not logged in) (*.*.*.*)> 234 Using authentication type TLS
(000048)6/23/2021 16:05:43 PM - (not logged in) (*.*.*.*)> TLS connection established
(000048)6/23/2021 16:05:43 PM - (not logged in) (*.*.*.*)> USER --someid--
(000048)6/23/2021 16:05:43 PM - (not logged in) (*.*.*.*)> 331 Password required for --someid--
(000048)6/23/2021 16:05:43 PM - (not logged in) (*.*.*.*)> PASS --someid--
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> 230 Logged on
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> PBSZ 0
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> 200 PBSZ=0
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> PROT P
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> 200 Protection level set to P
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> CWD /ClientTIFF
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> 250 CWD successful. "/ClientTIFF" is current directory.
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> PWD
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> 257 "/ClientTIFF" is current directory.
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> TYPE A
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> 200 Type set to A
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> PASV
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> 227 Entering Passive Mode (x,x,x,x,199,117)
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> STOR zlog.txt
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> 150 Opening data channel for file upload to server of "/ClientTIFF/scan150551001.tif"
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> TLS connection for data connection established
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> 226 Successfully transferred "/ClientTIFF/scan150551001.tif"
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> TYPE I
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> 200 Type set to I
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> PASV
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> 227 Entering Passive Mode (x,x,x,x,201,32)
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> MLSD
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> 150 Opening data channel for directory listing of "/ClientTIFF"
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> TLS connection for data connection established
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> 226 Successfully transferred "/ClientTIFF"
Open in new window
However using a (Fujitsu N7100) network scanner I get an error "450 TLS session of data connection has not resumed or the session does not match the control connection" as per bellow:

Code: Select all

(000052)6/23/2021 16:05:58 PM - (not logged in) (212.90.216.146)> Connected on port 2221, sending welcome message...
(000052)6/23/2021 16:05:58 PM - (not logged in) (212.90.216.146)> 220 This is not a public server !
(000052)6/23/2021 16:05:58 PM - (not logged in) (212.90.216.146)> AUTH TLS-P
(000052)6/23/2021 16:05:58 PM - (not logged in) (212.90.216.146)> 504 Auth type not supported
(000052)6/23/2021 16:05:58 PM - (not logged in) (212.90.216.146)> AUTH TLS
(000052)6/23/2021 16:05:58 PM - (not logged in) (212.90.216.146)> 234 Using authentication type TLS
(000052)6/23/2021 16:05:58 PM - (not logged in) (212.90.216.146)> TLS connection established
(000052)6/23/2021 16:05:58 PM - (not logged in) (212.90.216.146)> PBSZ 0
(000052)6/23/2021 16:05:58 PM - (not logged in) (212.90.216.146)> 200 PBSZ=0
(000052)6/23/2021 16:05:58 PM - (not logged in) (212.90.216.146)> PROT P
(000052)6/23/2021 16:05:58 PM - (not logged in) (212.90.216.146)> 200 Protection level set to P
(000052)6/23/2021 16:05:58 PM - (not logged in) (212.90.216.146)> USER --someid--
(000052)6/23/2021 16:05:58 PM - (not logged in) (212.90.216.146)> 331 Password required for --someid--
(000052)6/23/2021 16:05:58 PM - (not logged in) (212.90.216.146)> PASS --someid--
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> 230 Logged on
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> FEAT
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> 211-Features:
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)>  MDTM
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)>  REST STREAM
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)>  SIZE
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)>  MLST type*;size*;modify*;
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)>  MLSD
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)>  AUTH SSL
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)>  AUTH TLS
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)>  PROT
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)>  PBSZ
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)>  UTF8
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)>  CLNT
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)>  MFMT
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)>  EPSV
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)>  EPRT
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> 211 End
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> OPTS UTF8 ON
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> 202 UTF8 mode is always enabled. No need to send this command.
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> NOOP
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> 200 OK
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> PWD
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> 257 "/" is current directory.
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> CWD ClientTIFF
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> 250 CWD successful. "/ClientTIFF" is current directory.
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> SIZE scan150551001.tif
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> 550 File not found
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> TYPE I
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> 200 Type set to I
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> PASV
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> 227 Entering Passive Mode (x,x,x,x,201,212)
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> STOR scan150551001.tif
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> 150 Opening data channel for file upload to server of "/ClientTIFF/scan150551001.tif"
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> 450 TLS session of data connection has not resumed or the session does not match the control connection
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> DELE scan150551001.tif
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> 250 File deleted successfully
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> disconnected.
(000048)6/23/2021 16:06:43 PM - --someid-- (*.*.*.*)> disconnected.
(000047)6/23/2021 16:07:39 PM - --someid-- (*.*.*.*)> 421 Connection timed out.
(000047)6/23/2021 16:07:39 PM - --someid-- (*.*.*.*)> disconnected.

the only thing I can see is that in the latter attempt the server will use port 51668 for the passive FTP whereas in the first case it used 51488. Both are in the firewall (Mikrotik) 51000-52000 defined range.

In the FileZilla Securtiy Settings I have unchecked the "require matching peer IP address of control and data connection" option (although I don't see why they would not match, but on the off-chance this would be my issue).

Any suggestion most welcome !

User avatar
botg
Site Admin
Posts: 35491
Joined: 2004-02-23 20:49
First name: Tim
Last name: Kosse

Re: FTPS issue with specific client

#2 Post by botg » 2021-06-23 16:31

The client you are using does not support TLS session resumption, an important security feature that prevents data connection stealing attacks. Consider updating to a client that does support TLS session resumption.

atakacs
504 Command not implemented
Posts: 9
Joined: 2012-01-19 13:59
First name: Alexandre
Last name: Takacs
Location: CH

Re: FTPS issue with specific client

#3 Post by atakacs » 2021-06-23 16:49

Thanks

It is, as mentioned, a standalone network scanner.

I fear there is no simple way to change that.

Any advice / trick you could suggest? There is not a major security concern here.

User avatar
boco
Contributor
Posts: 26899
Joined: 2006-05-01 03:28
Location: Germany

Re: FTPS issue with specific client

#4 Post by boco » 2021-06-23 18:54

sessionresumption.jpg
sessionresumption.jpg (74.03 KiB) Viewed 1553 times
### BEGIN SIGNATURE BLOCK ###
No support requests per PM! You will NOT get any reply!!!
FTP connection problems? Please do yourself a favor and read Network Configuration.
FileZilla connection test: https://filezilla-project.org/conntest.php
### END SIGNATURE BLOCK ###

User avatar
botg
Site Admin
Posts: 35491
Joined: 2004-02-23 20:49
First name: Tim
Last name: Kosse

Re: FTPS issue with specific client

#5 Post by botg » 2021-06-24 06:44

Bear in mind that in the upcoming new server this feature cannot be disabled.

atakacs
504 Command not implemented
Posts: 9
Joined: 2012-01-19 13:59
First name: Alexandre
Last name: Takacs
Location: CH

Re: FTPS issue with specific client

#6 Post by atakacs » 2021-06-24 07:30

Thanks for your input.

Unfortunately it still doesn't work - seem the file is not sent at all

Code: Select all

(000056)6/24/2021 9:16:03 AM - (not logged in) (*.*.*.*)> Connected on port 2221, sending welcome message...
(000056)6/24/2021 9:16:03 AM - (not logged in) (*.*.*.*)> 220 This is not a public server !
(000056)6/24/2021 9:16:03 AM - (not logged in) (*.*.*.*)> AUTH TLS-P
(000056)6/24/2021 9:16:03 AM - (not logged in) (*.*.*.*)> 504 Auth type not supported
(000056)6/24/2021 9:16:03 AM - (not logged in) (*.*.*.*)> AUTH TLS
(000056)6/24/2021 9:16:03 AM - (not logged in) (*.*.*.*)> 234 Using authentication type TLS
(000056)6/24/2021 9:16:03 AM - (not logged in) (*.*.*.*)> TLS connection established
(000056)6/24/2021 9:16:03 AM - (not logged in) (*.*.*.*)> PBSZ 0
(000056)6/24/2021 9:16:03 AM - (not logged in) (*.*.*.*)> 200 PBSZ=0
(000056)6/24/2021 9:16:03 AM - (not logged in) (*.*.*.*)> PROT P
(000056)6/24/2021 9:16:03 AM - (not logged in) (*.*.*.*)> 200 Protection level set to P
(000056)6/24/2021 9:16:03 AM - (not logged in) (*.*.*.*)> USER --someid--
(000056)6/24/2021 9:16:03 AM - (not logged in) (*.*.*.*)> 331 Password required for --someid--
(000056)6/24/2021 9:16:03 AM - (not logged in) (*.*.*.*)> PASS ***********
(000056)6/24/2021 9:16:03 AM - --someid-- (*.*.*.*)> 230 Logged on
(000056)6/24/2021 9:16:03 AM - --someid-- (*.*.*.*)> NOOP
(000056)6/24/2021 9:16:03 AM - --someid-- (*.*.*.*)> 200 OK
(000056)6/24/2021 9:16:03 AM - --someid-- (*.*.*.*)> PWD
(000056)6/24/2021 9:16:03 AM - --someid-- (*.*.*.*)> 257 "/" is current directory.
(000056)6/24/2021 9:16:03 AM - --someid-- (*.*.*.*)> CWD ClientTIFF
(000056)6/24/2021 9:16:03 AM - --someid-- (*.*.*.*)> 250 CWD successful. "/ClientTIFF" is current directory.
(000056)6/24/2021 9:16:03 AM - --someid-- (*.*.*.*)> TYPE I
(000056)6/24/2021 9:16:03 AM - --someid-- (*.*.*.*)> 200 Type set to I
(000056)6/24/2021 9:16:03 AM - --someid-- (*.*.*.*)> TYPE A
(000056)6/24/2021 9:16:03 AM - --someid-- (*.*.*.*)> 200 Type set to A
(000056)6/24/2021 9:16:03 AM - --someid-- (*.*.*.*)> PASV
(000056)6/24/2021 9:16:03 AM - --someid-- (*.*.*.*)> 227 Entering Passive Mode (*,*,*,*,201,81)
(000056)6/24/2021 9:16:24 AM - --someid-- (*.*.*.*)> disconnected.
(000057)6/24/2021 9:16:25 AM - (not logged in) (*.*.*.*)> Connected on port 2221, sending welcome message...
(000057)6/24/2021 9:16:25 AM - (not logged in) (*.*.*.*)> 220 This is not a public server !
(000057)6/24/2021 9:16:25 AM - (not logged in) (*.*.*.*)> AUTH TLS-P
(000057)6/24/2021 9:16:25 AM - (not logged in) (*.*.*.*)> 504 Auth type not supported
(000057)6/24/2021 9:16:25 AM - (not logged in) (*.*.*.*)> AUTH TLS
(000057)6/24/2021 9:16:25 AM - (not logged in) (*.*.*.*)> 234 Using authentication type TLS
(000057)6/24/2021 9:16:25 AM - (not logged in) (*.*.*.*)> TLS connection established
(000057)6/24/2021 9:16:25 AM - (not logged in) (*.*.*.*)> PBSZ 0
(000057)6/24/2021 9:16:25 AM - (not logged in) (*.*.*.*)> 200 PBSZ=0
(000057)6/24/2021 9:16:25 AM - (not logged in) (*.*.*.*)> PROT P
(000057)6/24/2021 9:16:25 AM - (not logged in) (*.*.*.*)> 200 Protection level set to P
(000057)6/24/2021 9:16:25 AM - (not logged in) (*.*.*.*)> USER --someid--
(000057)6/24/2021 9:16:25 AM - (not logged in) (*.*.*.*)> 331 Password required for --someid--
(000057)6/24/2021 9:16:25 AM - (not logged in) (*.*.*.*)> PASS ***********
(000057)6/24/2021 9:16:25 AM - --someid-- (*.*.*.*)> 230 Logged on
(000057)6/24/2021 9:16:25 AM - --someid-- (*.*.*.*)> NOOP
(000057)6/24/2021 9:16:25 AM - --someid-- (*.*.*.*)> 200 OK
(000057)6/24/2021 9:16:25 AM - --someid-- (*.*.*.*)> PWD
(000057)6/24/2021 9:16:25 AM - --someid-- (*.*.*.*)> 257 "/" is current directory.
(000057)6/24/2021 9:16:25 AM - --someid-- (*.*.*.*)> CWD ClientTIFF
(000057)6/24/2021 9:16:25 AM - --someid-- (*.*.*.*)> 250 CWD successful. "/ClientTIFF" is current directory.
(000057)6/24/2021 9:16:25 AM - --someid-- (*.*.*.*)> TYPE I
(000057)6/24/2021 9:16:25 AM - --someid-- (*.*.*.*)> 200 Type set to I
(000057)6/24/2021 9:16:25 AM - --someid-- (*.*.*.*)> TYPE A
(000057)6/24/2021 9:16:25 AM - --someid-- (*.*.*.*)> 200 Type set to A
(000057)6/24/2021 9:16:25 AM - --someid-- (*.*.*.*)> PASV
(000057)6/24/2021 9:16:25 AM - --someid-- (*.*.*.*)> 227 Entering Passive Mode (*,*,*,*,200,231)
(000057)6/24/2021 9:16:46 AM - --someid-- (*.*.*.*)> disconnected.
(000058)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> Connected on port 2221, sending welcome message...
(000058)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> 220 This is not a public server !
(000058)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> AUTH TLS-P
(000058)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> 504 Auth type not supported
(000058)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> AUTH TLS
(000058)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> 234 Using authentication type TLS
(000058)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> TLS connection established
(000058)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> PBSZ 0
(000058)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> 200 PBSZ=0
(000058)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> PROT P
(000058)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> 200 Protection level set to P
(000058)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> USER --someid--
(000058)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> 331 Password required for --someid--
(000058)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> PASS ***********
(000058)6/24/2021 9:16:46 AM - --someid-- (*.*.*.*)> 230 Logged on
(000058)6/24/2021 9:16:46 AM - --someid-- (*.*.*.*)> PWD
(000058)6/24/2021 9:16:46 AM - --someid-- (*.*.*.*)> 257 "/" is current directory.
(000058)6/24/2021 9:16:46 AM - --someid-- (*.*.*.*)> CWD ClientTIFF
(000058)6/24/2021 9:16:46 AM - --someid-- (*.*.*.*)> 250 CWD successful. "/ClientTIFF" is current directory.
(000058)6/24/2021 9:16:46 AM - --someid-- (*.*.*.*)> SIZE SCAN06242021081559001.tif
(000058)6/24/2021 9:16:46 AM - --someid-- (*.*.*.*)> 550 File not found
(000058)6/24/2021 9:16:46 AM - --someid-- (*.*.*.*)> disconnected.
(000059)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> Connected on port 2221, sending welcome message...
(000059)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> 220 This is not a public server !
(000059)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> AUTH TLS-P
(000059)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> 504 Auth type not supported
(000059)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> AUTH TLS
(000059)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> 234 Using authentication type TLS
(000059)6/24/2021 9:16:47 AM - (not logged in) (*.*.*.*)> TLS connection established
(000059)6/24/2021 9:16:47 AM - (not logged in) (*.*.*.*)> PBSZ 0
(000059)6/24/2021 9:16:47 AM - (not logged in) (*.*.*.*)> 200 PBSZ=0
(000059)6/24/2021 9:16:47 AM - (not logged in) (*.*.*.*)> PROT P
(000059)6/24/2021 9:16:47 AM - (not logged in) (*.*.*.*)> 200 Protection level set to P
(000059)6/24/2021 9:16:47 AM - (not logged in) (*.*.*.*)> USER --someid--
(000059)6/24/2021 9:16:47 AM - (not logged in) (*.*.*.*)> 331 Password required for --someid--
(000059)6/24/2021 9:16:47 AM - (not logged in) (*.*.*.*)> PASS ***********
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> 230 Logged on
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> FEAT
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> 211-Features:
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)>  MDTM
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)>  REST STREAM
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)>  SIZE
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)>  MLST type*;size*;modify*;
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)>  MLSD
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)>  AUTH SSL
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)>  AUTH TLS
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)>  PROT
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)>  PBSZ
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)>  UTF8
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)>  CLNT
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)>  MFMT
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)>  EPSV
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)>  EPRT
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> 211 End
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> OPTS UTF8 ON
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> 202 UTF8 mode is always enabled. No need to send this command.
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> NOOP
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> 200 OK
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> PWD
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> 257 "/" is current directory.
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> CWD ClientTIFF
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> 250 CWD successful. "/ClientTIFF" is current directory.
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> SIZE SCAN06242021081559001.tif
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> 550 File not found
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> TYPE I
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> 200 Type set to I
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> PASV
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> 227 Entering Passive Mode (*,*,*,*,202,175)
(000059)6/24/2021 9:17:08 AM - --someid-- (*.*.*.*)> disconnected.
Now I fully understand this is most likely a client side issue but somehow you might also make your server "tolerant" to imperfect (or more to the point, old and non updatable) client software. Typically here where it is pretty much an appliance that incidentals works fine with IIS ftp.

User avatar
botg
Site Admin
Posts: 35491
Joined: 2004-02-23 20:49
First name: Tim
Last name: Kosse

Re: FTPS issue with specific client

#7 Post by botg » 2021-06-24 08:23

If it involves security, tolerance is a terrible idea as it undermines security. See it this way, should a lock open if you shove any arbitrary, approximately key-shaped object into it?

atakacs
504 Command not implemented
Posts: 9
Joined: 2012-01-19 13:59
First name: Alexandre
Last name: Takacs
Location: CH

Re: FTPS issue with specific client

#8 Post by atakacs » 2021-06-24 08:30

On principle I fully agree.

But in the real world people need to have things done… We live in an imperfect world.

To be honest for secure transfers I stay away of FTP (any “flavour”).

In any case I have reverted to IIS which, for whatever reason, does the job in my specific client & server combination. Thanks for you help, though

Post Reply