Can't upload files from Plesk-Server

Need help with FileZilla Server? Something does not work as expected? In this forum you may find an answer.

Moderator: Project members

Post Reply
Message
Author
josha
500 Command not understood
Posts: 2
Joined: 2021-10-08 16:02

Can't upload files from Plesk-Server

#1 Post by josha » 2021-10-14 10:11

Hey,

we were using the Filezilla-server on a Windows Server 2008 as a place for other servers to upload their logs and backups to.
We have just setup a Widows-Server 2019 and installed the latest Filezilla-server and for most clients it works without problems.

There is also a Plesk-server uploading its backups to the ftp-server. Unfortunately the upload fails.
I attached the upload log below.

The most important line seems to be:
< 524 Unable to build data connection: TLS session of data connection not resumed.

Is there anything we can do about this?
My feeling is that it has something to do with TLS1.3 not being equally supported on all systems.


Kind Regards
Joscha

Code: Select all

[root@anonym ~]# echo 123 | curl -T - --ftp-create-dirs -v --ftp-pasv --ssl -k -u anonym 'ftp://anonym/./test-dir/test-file.txt'
Enter host password for user 'anonym':
* About to connect() to anonym port 21 (#0)
*   Trying anonym...
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
  0     0    0     0    0     0      0      0 --:--:-- --:--:-- --:--:--     0* Connected to anonym anonym(anonym) port 21 (#0)
< 220-FileZilla Server 1.0.1
< 220 Please visit https://filezilla-project.org/
> AUTH SSL
< 234 Using authentication type TLS.
* Initializing NSS with certpath: sql:/etc/pki/nssdb
* skipping SSL peer certificate verification
* SSL connection using TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
* Server certificate:
*       subject: CN=anonym
*       start date: Okt 08 14:15:56 2021 GMT
*       expire date: Okt 09 14:20:56 2022 GMT
*       common name: anonym
*       issuer: anonym
> USER anonym
< 331 Please, specify the password.
> PASS anonym
  0     0    0     0    0     0      0      0 --:--:-- --:--:-- --:--:--     0< 230 Login successful.
> PBSZ 0
< 200 PBSZ=0
> PROT P
< 200 Protection level set to P
> PWD
< 257 "/" is current directory.
* Entry path is '/'
> CWD .
* ftp_perform ends with SECONDARY: 0
< 250 CWD command successful
> CWD test-dir
< 550 No such file
> MKD test-dir
< 257 "/test-dir" created successfully.
> CWD test-dir
< 250 CWD command successful
> EPSV
* Connect data stream passively
< 229 Entering Extended Passive Mode (|||990|)
*   Trying anonym...
* Connecting to anonym (anonym) port 990
* Connected to anonym (anonym) port 21 (#0)
> TYPE I
< 200 Type set to I
> STOR test-file.txt
< 150 Starting data transfer.
* Doing the SSL/TLS handshake on the data stream
* skipping SSL peer certificate verification
* SSL connection using TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
* Server certificate:
*       subject: CN=anonym
*       start date: Okt 08 14:15:56 2021 GMT
*       expire date: Okt 09 14:20:56 2022 GMT
*       common name: anonym
*       issuer: CN=anonym
} [data not shown]
* Remembering we are in dir "./test-dir/"
< 425 Unable to build data connection: TLS session of data connection not resumed.
* server did not report OK, got 425
100     4    0     0    0     4      0      7 --:--:-- --:--:-- --:--:--     7
* Connection #0 to host anonym left intact
curl: (18) server did not report OK, got 425

User avatar
oibaf
Contributor
Posts: 398
Joined: 2021-07-16 21:02
First name: Fabio
Last name: Alemagna

Re: Can't upload files from Plesk-Server

#2 Post by oibaf » 2021-10-14 13:45

What version of curl are you using? With version 7.74.0 it works.

User avatar
boco
Contributor
Posts: 26912
Joined: 2006-05-01 03:28
Location: Germany

Re: Can't upload files from Plesk-Server

#3 Post by boco » 2021-10-14 13:47

It's not a TLS 1.3 issue, but one with TLS session resumption. This important security feature was optional in the old 0.9.x server line, but is now mandatory. Unfortunately, that FTP client of yours doesn't support it.
You need to update the FTP client on that machine to one supporting session resumption. Seems to be a version of curl/libcurl.
No support requests over PM! You will NOT get any reply!!!
FTP connection problems? Please read Network Configuration.
FileZilla connection test: https://filezilla-project.org/conntest.php
FileZilla Pro support: https://customerforum.fileZilla-project.org

josha
500 Command not understood
Posts: 2
Joined: 2021-10-08 16:02

Re: Can't upload files from Plesk-Server

#4 Post by josha » 2021-10-17 12:18

Thank's a lot for the reply. This clears it up somewhat.

Unfortunately the client-side is maintained by another company.
It runs CentOS7 which is supported until June 2024. As far as i can tell, CentOS7 does not yet include a newer Version of curl than 7.47.1-1.4.
I will ask the server maintainer to check and write on the CentOS forum but i cannot imagine that CentOS corrects this soon.

This leaves us with very little options. The FTP Backup is mandatory for us.
Are you able to make the session-reuse optional? Maybe not in the GUI but in some config-file?
We can also not let the old Server run anymore since it is based on Win-Server 2008.
Any ideas how we can make this work?

Kind regards
Joscha Knobloch

User avatar
botg
Site Admin
Posts: 35507
Joined: 2004-02-23 20:49
First name: Tim
Last name: Kosse

Re: Can't upload files from Plesk-Server

#5 Post by botg » 2021-10-18 11:23

The session resumption requirement won't be made optional, it's an important security feature. Making it optional would compromise security even with clients using resumption, it would result in an illusion of security.

If you care about actual security, update your version of curl, e.g. by compiling it manually from source. If you don't care about actual security, use plain FTP.

Post Reply