home
***
CD-ROM
|
disk
|
FTP
|
other
***
search
/
kermit.columbia.edu
/
kermit.columbia.edu.tar
/
kermit.columbia.edu
/
newsgroups
/
misc.20031118-20041115
/
000187_Petri_member@newsguy.com_Mon Apr 12 09:35:15 2004.msg
< prev
next >
Wrap
Internet Message Format
|
2004-11-14
|
3KB
Path: newsmaster.cc.columbia.edu!iad-feed.news.verio.net!peer1.stngva01.us.to.verio.net!news.verio.net!news.glorb.com!logbridge.uoregon.edu!arclight.uoregon.edu!wn51feed!worldnet.att.net!129.250.169.16!pln-e!spln!dex!extra.newsguy.com!newsp.newsguy.com!drn
From: Petri <Petri_member@newsguy.com>
Newsgroups: comp.protocols.kermit.misc
Subject: Re: FTP with Auth SSL
Date: 11 Apr 2004 21:33:07 -0700
Organization: Newsguy News Service [http://newsguy.com]
Lines: 57
Message-ID: <c5d66301vto@drn.newsguy.com>
References: <c5bv8301ck0@drn.newsguy.com> <GWfec.23377$Nn4.4630542@twister.nyc.rr.com> <c5clci0adl@drn.newsguy.com> <407A073D.7040004@nyc.rr.com>
NNTP-Posting-Host: p-988.newsdawg.com
X-Newsreader: Direct Read News 4.20
Xref: newsmaster.cc.columbia.edu comp.protocols.kermit.misc:14900
In article <407A073D.7040004@nyc.rr.com>, Jeffrey Altman says...
>>> Try turning on debugging:
>>> SET AUTH TLS DEBUG ON
>> Where did you find that? :)
>> It's not mentioned here:
>> http://www.columbia.edu/kermit/ckermit80.html
> Try reading the Security Documentation
> http://www.columbia.edu/kermit/security.html
Thanks!
>> This output is after having logged in with the script listed earlier
>> and having typed the command above:
>> ---8<---
>> (/home/petri/) C-Kermit>set auth tls debug on
>> (/home/petri/) C-Kermit>ftp dir
>> ---> TYPE A
>> 200 Type set to A.
>> ---> PASV
>> 227 Entering Passive Mode (127,0,0,1,128,154)
>> ---> LIST
>> 150 Opening ASCII mode data connection for directory listing.
>> =>START SSL connect on DATA
>> SSL_handshake:UNKWN before/connect initialization
>> SSL_connect:UNKWN before/connect initialization
>> SSL_connect:3WCH_A SSLv3 write client hello A
>> SSL_read_alert
>> SSL_connect:failed in 3RSH_A SSLv3 read server hello A
>>ftp: SSL_connect DATA error: error:14094417:SSL routines:SSL3_READ_BYTES:sslv3
>> alert illegal parameter
>> (/home/petri/) C-Kermit>exit
>> ---> QUIT
>> 435 Failed TLS negotiation on data channel, disconnected: No such file or
>> directory.
>> SSL_write_alert
>> ---8<---
> A firewall is dropping the connection after the initial client
> hello is sent.
There are no firewalls passed in the session above.
In fact, it is run against localhost.
If I instead use the local ftp client of redhat 9, it works.
If I connect with any ftp client (except kermit) from remote hosts, it works.
> The problem is not in Kermit.
Yes, but even Kermit can't do better than the user tells it to. :)
Surely this must a case of me having missed some necessary configuration
somewhere?
Petri