FileZilla Forums

Welcome to the official discussion forums for FileZilla
Donate to project
It is currently 2014-04-18 00:14

All times are UTC




Post new topic This topic is locked, you cannot edit posts or make further replies.  [ 12 posts ] 
Author Message
PostPosted: 2008-07-30 18:28 
Offline
500 Command not understood

Joined: 2008-07-30 17:13
Posts: 2
Hi,

I am getting an error saying that "Server did not properly shut down TLS connection" when I try to connect to a secure server.
after that I get the following lines:

Could not read from transfer socket: ECONNABORTED - Connection aborted
Error: Failed to retrieve directory listing
Error: Connection closed by server

Can anybody help me figure out what is wrong.

Thanks,
Sohi.


Top
 Profile  
 
PostPosted: 2008-07-30 20:07 
Offline
Site Admin
User avatar

Joined: 2004-02-23 20:49
Posts: 22519
You need to upgrade to a better server. Like for example FileZilla Server 0.9.27 or vsftpd 2.0.7, those are known to perform the mandatory SSL/TLS shutdown as required by the specifications.


Top
 Profile  
 
PostPosted: 2008-09-26 14:39 
Offline
500 Command not understood

Joined: 2008-09-26 14:26
Posts: 1
We are having the same problem but only with the Filezilla client on a linux box.

We are running vsftpd 2.0.5 on Debian Linux using secure SSL in passive mode.
We have multiple clients on both windows and linux boxes connecting to this server without any problem, they receive no errors.
This includes the FileZilla client on a windows box (it connects wtihout a problem).

The only client that fails and receives the "Server did not properly shutdown TLS connection" is the FileZilla client on a Linux box.
We are using Filezilla 3.1.3 on a Debian Linux when this failure occures.

It seems to us if this were a server issue it would fail for all clients and not just the Filezilla/Linux client.


Top
 Profile  
 
PostPosted: 2008-09-26 15:15 
Offline
226 Transfer OK

Joined: 2005-11-02 06:41
Posts: 619
Vsftpd prior to 2.0.7 will not properly shutdown TLS connections. FileZilla clients version 3.1.0.1 and later will issue a fatal error due to potential security issues with this bug. The changelog is still advertising the fix on the main page: http://vsftpd.beasts.org/.

You'll need to either push the Debian package maintainers to backport the patch in 2.0.7 or build 2.0.7 from the tarball source.

Ubuntu people having the same problem:
http://ubuntuforums.org/showthread.php?t=880724

I don't entirely agree with the solution provided there (it strikes me as a bit too kludgey to use make and not make install) but it would work.


Top
 Profile  
 
PostPosted: 2008-10-15 11:09 
Offline
500 Command not understood

Joined: 2008-10-15 11:02
Posts: 1
Hi:

I'm getting the same problem. I'm running Filezilla 3.1.3.1 on MacOS 10.5.5.

The ftp server is ran under Linux Debian, Proftpd 1.2.10.

I used to be able to log in using TLS/SSL on older version of Filezillas on my Mac, but not now. However i still can log in using normal FTP instead of FTPES.

I have another client running Kubuntu, no problem logging in using Filezilla FTPES mode.

Is this a server or client side problem?

Log:

Status: Disconnected from server
Status: Resolving address of x
Status: Connecting to x...
Status: Connection established, waiting for welcome message...
Response: 220 ProFTPD 1.2.10 Server (Audittv (Singnet 1)) [119.73.142.192]
Command: AUTH TLS
Response: 234 AUTH TLS successful
Status: Initializing TLS...
Status: Verifying certificate...
Command: USER daniel
Status: TLS/SSL connection established.
Response: 331 Password required for x.
Command: PASS ********
Response: 230 User daniel logged in.
Command: PBSZ 0
Response: 200 PBSZ 0 successful
Command: PROT P
Response: 200 Protection set to Private
Status: Connected
Status: Retrieving directory listing...
Command: PWD
Response: 257 "/" is current directory.
Command: TYPE I
Response: 200 Type set to I
Command: PASV
Response: 227 Entering Passive Mode (x,239,111).
Command: LIST
Response: 150 Opening ASCII mode data connection for file list
Status: Server did not properly shut down TLS connection
Error: Could not read from transfer socket: ECONNABORTED - Connection aborted

Response: 226 Transfer complete.
Error: Failed to retrieve directory listing


Top
 Profile  
 
PostPosted: 2008-10-15 12:00 
Offline
Site Admin
User avatar

Joined: 2004-02-23 20:49
Posts: 22519
Quote:
Is this a server or client side problem?


It's lack of reading comprehension on your part. This question has been answered before in this very thread.


Top
 Profile  
 
PostPosted: 2008-10-28 00:15 
Offline
500 Command not understood

Joined: 2008-10-28 00:11
Posts: 1
Quote:
It's lack of reading comprehension on your part


Nice dick response :evil: , great support.


Top
 Profile  
 
PostPosted: 2008-10-28 09:18 
Offline
Site Admin
User avatar

Joined: 2004-02-23 20:49
Posts: 22519
RobertMJ wrote:
Nice dick response :evil: , great support.


Thanks for appreciating my support. However I'm not Richard, I'm Tim.


Top
 Profile  
 
PostPosted: 2009-04-27 15:28 
Offline
500 Command not understood

Joined: 2009-04-27 15:22
Posts: 1
Is there a way to make FileZilla ignore this bug on the server ?

I am using FileZilla to connect to a server which I have no control over. I am uploading files, not downloading and I would like to use my favourite ftp client. Do not want to install CuteFTP or anything else. What can I do ?


Top
 Profile  
 
PostPosted: 2009-04-27 16:24 
Offline
Site Admin
User avatar

Joined: 2004-02-23 20:49
Posts: 22519
No, because it's a security vulnerability.


Top
 Profile  
 
PostPosted: 2009-09-12 10:08 
Offline
504 Command not implemented

Joined: 2009-09-11 22:40
Posts: 8
You need to compile FileZilla yourself, with a switch to get rid of this "great security feature".

For me it is simple: i just don't use FileZilla 3.x but the much better program "<vulnerable program>".


Top
 Profile  
 
PostPosted: 2009-09-12 12:00 
Offline
Site Admin
User avatar

Joined: 2004-02-23 20:49
Posts: 22519
Have fun using vulnerable software. People like you are the reason why malware is spreading so fast.


Top
 Profile  
 
Display posts from previous:  Sort by  
Post new topic This topic is locked, you cannot edit posts or make further replies.  [ 12 posts ] 

All times are UTC


Who is online

Users browsing this forum: Baidu [Spider], Bing [Bot], Google [Bot] and 12 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Dedicated server provided by Artmotion.
Forum sponsored by Everyware.ch.
Powered by phpBB® Forum Software © phpBB Group