FileZilla Forums

Welcome to the official discussion forums for FileZilla
https://forum.filezilla-project.org/

FTPS issue with specific client

https://forum.filezilla-project.org/viewtopic.php?f=6&t=53879

Page 1 of 1

FTPS issue with specific client

Posted: 2021-06-23 16:02
by atakacs
I am having an issue setting up a FTPS server using FileZilla server v 0.9.6 on a windows machine

Basically everything work as intended when I am connecting form FileZilla client or using https://ftptest.net

Code: Select all

(000048)6/23/2021 16:05:43 PM - (not logged in) (*.*.*.*)> Connected on port 2221, sending welcome message...
(000048)6/23/2021 16:05:43 PM - (not logged in) (*.*.*.*)> 220 This is not a public server !
(000048)6/23/2021 16:05:43 PM - (not logged in) (*.*.*.*)> AUTH TLS
(000048)6/23/2021 16:05:43 PM - (not logged in) (*.*.*.*)> 234 Using authentication type TLS
(000048)6/23/2021 16:05:43 PM - (not logged in) (*.*.*.*)> TLS connection established
(000048)6/23/2021 16:05:43 PM - (not logged in) (*.*.*.*)> USER --someid--
(000048)6/23/2021 16:05:43 PM - (not logged in) (*.*.*.*)> 331 Password required for --someid--
(000048)6/23/2021 16:05:43 PM - (not logged in) (*.*.*.*)> PASS --someid--
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> 230 Logged on
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> PBSZ 0
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> 200 PBSZ=0
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> PROT P
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> 200 Protection level set to P
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> CWD /ClientTIFF
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> 250 CWD successful. "/ClientTIFF" is current directory.
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> PWD
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> 257 "/ClientTIFF" is current directory.
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> TYPE A
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> 200 Type set to A
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> PASV
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> 227 Entering Passive Mode (x,x,x,x,199,117)
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> STOR zlog.txt
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> 150 Opening data channel for file upload to server of "/ClientTIFF/scan150551001.tif"
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> TLS connection for data connection established
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> 226 Successfully transferred "/ClientTIFF/scan150551001.tif"
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> TYPE I
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> 200 Type set to I
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> PASV
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> 227 Entering Passive Mode (x,x,x,x,201,32)
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> MLSD
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> 150 Opening data channel for directory listing of "/ClientTIFF"
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> TLS connection for data connection established
(000048)6/23/2021 16:05:43 PM - --someid-- (*.*.*.*)> 226 Successfully transferred "/ClientTIFF"
Open in new window
However using a (Fujitsu N7100) network scanner I get an error "450 TLS session of data connection has not resumed or the session does not match the control connection" as per bellow:

Code: Select all

(000052)6/23/2021 16:05:58 PM - (not logged in) (212.90.216.146)> Connected on port 2221, sending welcome message...
(000052)6/23/2021 16:05:58 PM - (not logged in) (212.90.216.146)> 220 This is not a public server !
(000052)6/23/2021 16:05:58 PM - (not logged in) (212.90.216.146)> AUTH TLS-P
(000052)6/23/2021 16:05:58 PM - (not logged in) (212.90.216.146)> 504 Auth type not supported
(000052)6/23/2021 16:05:58 PM - (not logged in) (212.90.216.146)> AUTH TLS
(000052)6/23/2021 16:05:58 PM - (not logged in) (212.90.216.146)> 234 Using authentication type TLS
(000052)6/23/2021 16:05:58 PM - (not logged in) (212.90.216.146)> TLS connection established
(000052)6/23/2021 16:05:58 PM - (not logged in) (212.90.216.146)> PBSZ 0
(000052)6/23/2021 16:05:58 PM - (not logged in) (212.90.216.146)> 200 PBSZ=0
(000052)6/23/2021 16:05:58 PM - (not logged in) (212.90.216.146)> PROT P
(000052)6/23/2021 16:05:58 PM - (not logged in) (212.90.216.146)> 200 Protection level set to P
(000052)6/23/2021 16:05:58 PM - (not logged in) (212.90.216.146)> USER --someid--
(000052)6/23/2021 16:05:58 PM - (not logged in) (212.90.216.146)> 331 Password required for --someid--
(000052)6/23/2021 16:05:58 PM - (not logged in) (212.90.216.146)> PASS --someid--
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> 230 Logged on
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> FEAT
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> 211-Features:
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)>  MDTM
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)>  REST STREAM
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)>  SIZE
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)>  MLST type*;size*;modify*;
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)>  MLSD
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)>  AUTH SSL
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)>  AUTH TLS
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)>  PROT
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)>  PBSZ
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)>  UTF8
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)>  CLNT
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)>  MFMT
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)>  EPSV
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)>  EPRT
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> 211 End
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> OPTS UTF8 ON
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> 202 UTF8 mode is always enabled. No need to send this command.
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> NOOP
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> 200 OK
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> PWD
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> 257 "/" is current directory.
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> CWD ClientTIFF
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> 250 CWD successful. "/ClientTIFF" is current directory.
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> SIZE scan150551001.tif
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> 550 File not found
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> TYPE I
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> 200 Type set to I
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> PASV
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> 227 Entering Passive Mode (x,x,x,x,201,212)
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> STOR scan150551001.tif
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> 150 Opening data channel for file upload to server of "/ClientTIFF/scan150551001.tif"
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> 450 TLS session of data connection has not resumed or the session does not match the control connection
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> DELE scan150551001.tif
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> 250 File deleted successfully
(000052)6/23/2021 16:05:58 PM - --someid-- (212.90.216.146)> disconnected.
(000048)6/23/2021 16:06:43 PM - --someid-- (*.*.*.*)> disconnected.
(000047)6/23/2021 16:07:39 PM - --someid-- (*.*.*.*)> 421 Connection timed out.
(000047)6/23/2021 16:07:39 PM - --someid-- (*.*.*.*)> disconnected.

the only thing I can see is that in the latter attempt the server will use port 51668 for the passive FTP whereas in the first case it used 51488. Both are in the firewall (Mikrotik) 51000-52000 defined range.

In the FileZilla Securtiy Settings I have unchecked the "require matching peer IP address of control and data connection" option (although I don't see why they would not match, but on the off-chance this would be my issue).

Any suggestion most welcome !

Re: FTPS issue with specific client

Posted: 2021-06-23 16:31
by botg
The client you are using does not support TLS session resumption, an important security feature that prevents data connection stealing attacks. Consider updating to a client that does support TLS session resumption.

Re: FTPS issue with specific client

Posted: 2021-06-23 16:49
by atakacs
Thanks

It is, as mentioned, a standalone network scanner.

I fear there is no simple way to change that.

Any advice / trick you could suggest? There is not a major security concern here.

Re: FTPS issue with specific client

Posted: 2021-06-23 18:54
by boco
sessionresumption.jpg
sessionresumption.jpg (74.03 KiB) Viewed 1640 times

Re: FTPS issue with specific client

Posted: 2021-06-24 06:44
by botg
Bear in mind that in the upcoming new server this feature cannot be disabled.

Re: FTPS issue with specific client

Posted: 2021-06-24 07:30
by atakacs
Thanks for your input.

Unfortunately it still doesn't work - seem the file is not sent at all

Code: Select all

(000056)6/24/2021 9:16:03 AM - (not logged in) (*.*.*.*)> Connected on port 2221, sending welcome message...
(000056)6/24/2021 9:16:03 AM - (not logged in) (*.*.*.*)> 220 This is not a public server !
(000056)6/24/2021 9:16:03 AM - (not logged in) (*.*.*.*)> AUTH TLS-P
(000056)6/24/2021 9:16:03 AM - (not logged in) (*.*.*.*)> 504 Auth type not supported
(000056)6/24/2021 9:16:03 AM - (not logged in) (*.*.*.*)> AUTH TLS
(000056)6/24/2021 9:16:03 AM - (not logged in) (*.*.*.*)> 234 Using authentication type TLS
(000056)6/24/2021 9:16:03 AM - (not logged in) (*.*.*.*)> TLS connection established
(000056)6/24/2021 9:16:03 AM - (not logged in) (*.*.*.*)> PBSZ 0
(000056)6/24/2021 9:16:03 AM - (not logged in) (*.*.*.*)> 200 PBSZ=0
(000056)6/24/2021 9:16:03 AM - (not logged in) (*.*.*.*)> PROT P
(000056)6/24/2021 9:16:03 AM - (not logged in) (*.*.*.*)> 200 Protection level set to P
(000056)6/24/2021 9:16:03 AM - (not logged in) (*.*.*.*)> USER --someid--
(000056)6/24/2021 9:16:03 AM - (not logged in) (*.*.*.*)> 331 Password required for --someid--
(000056)6/24/2021 9:16:03 AM - (not logged in) (*.*.*.*)> PASS ***********
(000056)6/24/2021 9:16:03 AM - --someid-- (*.*.*.*)> 230 Logged on
(000056)6/24/2021 9:16:03 AM - --someid-- (*.*.*.*)> NOOP
(000056)6/24/2021 9:16:03 AM - --someid-- (*.*.*.*)> 200 OK
(000056)6/24/2021 9:16:03 AM - --someid-- (*.*.*.*)> PWD
(000056)6/24/2021 9:16:03 AM - --someid-- (*.*.*.*)> 257 "/" is current directory.
(000056)6/24/2021 9:16:03 AM - --someid-- (*.*.*.*)> CWD ClientTIFF
(000056)6/24/2021 9:16:03 AM - --someid-- (*.*.*.*)> 250 CWD successful. "/ClientTIFF" is current directory.
(000056)6/24/2021 9:16:03 AM - --someid-- (*.*.*.*)> TYPE I
(000056)6/24/2021 9:16:03 AM - --someid-- (*.*.*.*)> 200 Type set to I
(000056)6/24/2021 9:16:03 AM - --someid-- (*.*.*.*)> TYPE A
(000056)6/24/2021 9:16:03 AM - --someid-- (*.*.*.*)> 200 Type set to A
(000056)6/24/2021 9:16:03 AM - --someid-- (*.*.*.*)> PASV
(000056)6/24/2021 9:16:03 AM - --someid-- (*.*.*.*)> 227 Entering Passive Mode (*,*,*,*,201,81)
(000056)6/24/2021 9:16:24 AM - --someid-- (*.*.*.*)> disconnected.
(000057)6/24/2021 9:16:25 AM - (not logged in) (*.*.*.*)> Connected on port 2221, sending welcome message...
(000057)6/24/2021 9:16:25 AM - (not logged in) (*.*.*.*)> 220 This is not a public server !
(000057)6/24/2021 9:16:25 AM - (not logged in) (*.*.*.*)> AUTH TLS-P
(000057)6/24/2021 9:16:25 AM - (not logged in) (*.*.*.*)> 504 Auth type not supported
(000057)6/24/2021 9:16:25 AM - (not logged in) (*.*.*.*)> AUTH TLS
(000057)6/24/2021 9:16:25 AM - (not logged in) (*.*.*.*)> 234 Using authentication type TLS
(000057)6/24/2021 9:16:25 AM - (not logged in) (*.*.*.*)> TLS connection established
(000057)6/24/2021 9:16:25 AM - (not logged in) (*.*.*.*)> PBSZ 0
(000057)6/24/2021 9:16:25 AM - (not logged in) (*.*.*.*)> 200 PBSZ=0
(000057)6/24/2021 9:16:25 AM - (not logged in) (*.*.*.*)> PROT P
(000057)6/24/2021 9:16:25 AM - (not logged in) (*.*.*.*)> 200 Protection level set to P
(000057)6/24/2021 9:16:25 AM - (not logged in) (*.*.*.*)> USER --someid--
(000057)6/24/2021 9:16:25 AM - (not logged in) (*.*.*.*)> 331 Password required for --someid--
(000057)6/24/2021 9:16:25 AM - (not logged in) (*.*.*.*)> PASS ***********
(000057)6/24/2021 9:16:25 AM - --someid-- (*.*.*.*)> 230 Logged on
(000057)6/24/2021 9:16:25 AM - --someid-- (*.*.*.*)> NOOP
(000057)6/24/2021 9:16:25 AM - --someid-- (*.*.*.*)> 200 OK
(000057)6/24/2021 9:16:25 AM - --someid-- (*.*.*.*)> PWD
(000057)6/24/2021 9:16:25 AM - --someid-- (*.*.*.*)> 257 "/" is current directory.
(000057)6/24/2021 9:16:25 AM - --someid-- (*.*.*.*)> CWD ClientTIFF
(000057)6/24/2021 9:16:25 AM - --someid-- (*.*.*.*)> 250 CWD successful. "/ClientTIFF" is current directory.
(000057)6/24/2021 9:16:25 AM - --someid-- (*.*.*.*)> TYPE I
(000057)6/24/2021 9:16:25 AM - --someid-- (*.*.*.*)> 200 Type set to I
(000057)6/24/2021 9:16:25 AM - --someid-- (*.*.*.*)> TYPE A
(000057)6/24/2021 9:16:25 AM - --someid-- (*.*.*.*)> 200 Type set to A
(000057)6/24/2021 9:16:25 AM - --someid-- (*.*.*.*)> PASV
(000057)6/24/2021 9:16:25 AM - --someid-- (*.*.*.*)> 227 Entering Passive Mode (*,*,*,*,200,231)
(000057)6/24/2021 9:16:46 AM - --someid-- (*.*.*.*)> disconnected.
(000058)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> Connected on port 2221, sending welcome message...
(000058)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> 220 This is not a public server !
(000058)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> AUTH TLS-P
(000058)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> 504 Auth type not supported
(000058)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> AUTH TLS
(000058)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> 234 Using authentication type TLS
(000058)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> TLS connection established
(000058)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> PBSZ 0
(000058)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> 200 PBSZ=0
(000058)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> PROT P
(000058)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> 200 Protection level set to P
(000058)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> USER --someid--
(000058)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> 331 Password required for --someid--
(000058)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> PASS ***********
(000058)6/24/2021 9:16:46 AM - --someid-- (*.*.*.*)> 230 Logged on
(000058)6/24/2021 9:16:46 AM - --someid-- (*.*.*.*)> PWD
(000058)6/24/2021 9:16:46 AM - --someid-- (*.*.*.*)> 257 "/" is current directory.
(000058)6/24/2021 9:16:46 AM - --someid-- (*.*.*.*)> CWD ClientTIFF
(000058)6/24/2021 9:16:46 AM - --someid-- (*.*.*.*)> 250 CWD successful. "/ClientTIFF" is current directory.
(000058)6/24/2021 9:16:46 AM - --someid-- (*.*.*.*)> SIZE SCAN06242021081559001.tif
(000058)6/24/2021 9:16:46 AM - --someid-- (*.*.*.*)> 550 File not found
(000058)6/24/2021 9:16:46 AM - --someid-- (*.*.*.*)> disconnected.
(000059)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> Connected on port 2221, sending welcome message...
(000059)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> 220 This is not a public server !
(000059)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> AUTH TLS-P
(000059)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> 504 Auth type not supported
(000059)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> AUTH TLS
(000059)6/24/2021 9:16:46 AM - (not logged in) (*.*.*.*)> 234 Using authentication type TLS
(000059)6/24/2021 9:16:47 AM - (not logged in) (*.*.*.*)> TLS connection established
(000059)6/24/2021 9:16:47 AM - (not logged in) (*.*.*.*)> PBSZ 0
(000059)6/24/2021 9:16:47 AM - (not logged in) (*.*.*.*)> 200 PBSZ=0
(000059)6/24/2021 9:16:47 AM - (not logged in) (*.*.*.*)> PROT P
(000059)6/24/2021 9:16:47 AM - (not logged in) (*.*.*.*)> 200 Protection level set to P
(000059)6/24/2021 9:16:47 AM - (not logged in) (*.*.*.*)> USER --someid--
(000059)6/24/2021 9:16:47 AM - (not logged in) (*.*.*.*)> 331 Password required for --someid--
(000059)6/24/2021 9:16:47 AM - (not logged in) (*.*.*.*)> PASS ***********
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> 230 Logged on
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> FEAT
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> 211-Features:
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)>  MDTM
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)>  REST STREAM
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)>  SIZE
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)>  MLST type*;size*;modify*;
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)>  MLSD
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)>  AUTH SSL
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)>  AUTH TLS
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)>  PROT
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)>  PBSZ
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)>  UTF8
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)>  CLNT
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)>  MFMT
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)>  EPSV
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)>  EPRT
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> 211 End
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> OPTS UTF8 ON
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> 202 UTF8 mode is always enabled. No need to send this command.
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> NOOP
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> 200 OK
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> PWD
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> 257 "/" is current directory.
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> CWD ClientTIFF
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> 250 CWD successful. "/ClientTIFF" is current directory.
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> SIZE SCAN06242021081559001.tif
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> 550 File not found
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> TYPE I
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> 200 Type set to I
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> PASV
(000059)6/24/2021 9:16:47 AM - --someid-- (*.*.*.*)> 227 Entering Passive Mode (*,*,*,*,202,175)
(000059)6/24/2021 9:17:08 AM - --someid-- (*.*.*.*)> disconnected.
Now I fully understand this is most likely a client side issue but somehow you might also make your server "tolerant" to imperfect (or more to the point, old and non updatable) client software. Typically here where it is pretty much an appliance that incidentals works fine with IIS ftp.

Re: FTPS issue with specific client

Posted: 2021-06-24 08:23
by botg
If it involves security, tolerance is a terrible idea as it undermines security. See it this way, should a lock open if you shove any arbitrary, approximately key-shaped object into it?

Re: FTPS issue with specific client

Posted: 2021-06-24 08:30
by atakacs
On principle I fully agree.

But in the real world people need to have things done… We live in an imperfect world.

To be honest for secure transfers I stay away of FTP (any “flavour”).

In any case I have reverted to IIS which, for whatever reason, does the job in my specific client & server combination. Thanks for you help, though
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited