FileZilla Forums

Welcome to the official discussion forums for FileZilla
Donate to project
It is currently 2014-04-21 02:47

All times are UTC




Post new topic Reply to topic  [ 5 posts ] 
Author Message
PostPosted: 2013-03-12 15:12 
Offline
500 Command not understood

Joined: 2013-03-12 14:44
Posts: 3
I setup a public key with passphrase via puttys keygen & its working with Putty directly to my Ubuntu OpenSSH server. I then tried to add private key (.ppk file) to filezilla & it stated password protected keyfiles are not supported yet, prompted to convert to unprotected file, I said no. Today I went to connect with normal password & got the below:
Code:
Status:   Connecting to lnx...
Trace:   Going to execute "C:\Program Files (x86)\FileZilla FTP Client\fzsftp.exe"
Response:   fzSftp started
Trace:   CSftpControlSocket::ConnectParseResponse(fzSftp started)
Trace:   CSftpControlSocket::SendNextCommand()
Trace:   CSftpControlSocket::ConnectSend()
Command:   open "gregg@lnx" 22
Trace:   psftp: Implicit session load.
Trace:   psftp: Host still has atsign: gregg@lnx
Trace:   Looking up host "lnx"
Trace:   Connecting to 192.168.1.118 port 22
Trace:   Server version: SSH-2.0-OpenSSH...
Trace:   Using SSH protocol version 2
Trace:   We claim version: SSH-2.0-PuTTY_Local:_Nov_29_2012_22:59:17
Trace:   Doing Diffie-Hellman group exchange
Trace:   Doing Diffie-Hellman key exchange with hash SHA-256
Trace:   Host key fingerprint is:
Trace:   ssh-rsa 2048 9f:5c:c3:34:f8:05:6b:db:21:e7:3d:f2:18:d5:98:f9
Trace:   Initialised AES-256 SDCTR client->server encryption
Trace:   Initialised HMAC-SHA1 client->server MAC algorithm
Trace:   Initialised AES-256 SDCTR server->client encryption
Trace:   Initialised HMAC-SHA1 server->client MAC algorithm
Trace:   Reading private key file "C:\CreatedForlnx.ppk"
Trace:   Offered public key
Trace:   Offer of public key accepted
Command:   Pass: *********
Error:   Authentication failed.
Trace:   CSftpControlSocket::ResetOperation(1094)
Trace:   CControlSocket::ResetOperation(1094)
Error:   Critical error
Error:   Could not connect to server

It's still trying to connect via public key. I downloaded psftp by itself to another directory & when trying to connect with just gregg@lnx it auto-prompted for key passphrase. Assume its auto-loading this info from the registry. I am posting this here to see if anyone else can test; because I would think they need to look at their code when you hit no it shouldn't do this. Or maybe my test with putty at first caused this?

Anyhow cool side effect: I found filezilla CAN accept passphrases/password-protected key files, as I put my passphrase for the private key in the password box & it accepts it & allows me in (I verified in the auth.log on ubuntu it took publickey)!!
I'm running Win7 64bit FileZilla 3.6.0.2


Last edited by greggmcfg on 2013-03-28 14:17, edited 1 time in total.

Top
 Profile  
 
PostPosted: 2013-03-12 15:50 
Offline
226 Transfer OK
User avatar

Joined: 2006-05-01 03:28
Posts: 19658
Location: Germany
PuTTYGen writes the values into the registry:

HKEY_CURRENT_USER\\Software\\SimonTatham\\PuTTY\\SshHostKeys

Check if the info of yours is still there.

_________________
### BEGIN SIGNATURE BLOCK ###
FTP connection problems? Do yourself a favor and read Network Configuration.
All FileZilla products fully support IPv6. http://worldipv6launch.org
All support requests per PM will be ignored!
### END SIGNATURE BLOCK ###


Top
 Profile  
 
PostPosted: 2013-03-12 17:33 
Offline
500 Command not understood

Joined: 2013-03-12 14:44
Posts: 3
That is for the HOST keys (the initial/first connection to a server, its to validate the integrity of the server by the client). However you indeed got mostly there, only under Sessions, lnx (hostname), there is PublicKeyFile (a REG_SZ/String Value) with the data being the path to the private key (odd name). I deleted this entry, then tried filezilla & did get in with the password; did this twice for consistency. I then went into settings like I had before, attempted to add private key, same message about password-protected files not supported, I hit no. Refreshed registry & it wasn't there, tried to login with password again, it worked. Then went into putty & setup private key again & indeed if you save the session that key gets created in registry

Long story short: indeed its putty that creates this key

However I would hope somewhere in the FileZilla documentation it would note that it scans registry for this info & uses its. As I understand it uses a modified psftp, so you can't necessary assume it does this like the original psftp. Furthermore the general error was not informative: critical error (had to turn debug on) & confusing. Cool little side effect that I am curious if people are aware of: it can use password (or as its formally noted: pass-phrase) protected private key files (for public key authentication); just a back-route method way of it


Top
 Profile  
 
PostPosted: 2013-03-13 12:54 
Offline
226 Transfer OK
User avatar

Joined: 2006-05-01 03:28
Posts: 19658
Location: Germany
It uses the same registry keys so it can work directly together with the PuTTY Pageant tool.

_________________
### BEGIN SIGNATURE BLOCK ###
FTP connection problems? Do yourself a favor and read Network Configuration.
All FileZilla products fully support IPv6. http://worldipv6launch.org
All support requests per PM will be ignored!
### END SIGNATURE BLOCK ###


Top
 Profile  
 
PostPosted: 2013-03-13 13:20 
Offline
500 Command not understood

Joined: 2013-03-12 14:44
Posts: 3
I understood pageant to be the ssh-agent (still to do with private keys/not host-related). That's besides the point & I am not on here to show anyone else up, I came on here to:
    -advise of what I thought was an issue: filezilla using private-key when I told it not to
    -if anyone else could confirm that issue: could replicate it
    -advice of what I thought was a hidden feature: that it can use password-protected key files (albeit with a workaround)
    -to see if hidden feature was maybe documented as an FAQ: if you use putty with save sessions you may get erratic behavior

Edit: According to this filezilla wiki article the suggested public key method is using pageant. However since this is now integrated with filezilla directly I don't take that as current. However it will still useful as I assume a supported method of pass-phrase public key authentication. As for the hidden feature, I found a bug request noting it


Top
 Profile  
 
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 5 posts ] 

All times are UTC


Who is online

Users browsing this forum: Bing [Bot], Google [Bot] and 13 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Dedicated server provided by Artmotion.
Forum sponsored by Everyware.ch.
Powered by phpBB® Forum Software © phpBB Group