home
***
CD-ROM
|
disk
|
FTP
|
other
***
search
/
Columbia Kermit
/
kermit.zip
/
newsgroups
/
misc.20020314-20021006
/
000104_eric672@carolina.rr.comTRASH_Fri May 31 09:32:12 EDT 2002.msg
< prev
next >
Wrap
Text File
|
2020-01-01
|
5KB
|
115 lines
Article: 13397 of comp.protocols.kermit.misc
Path: newsmaster.cc.columbia.edu!phl-feed.news.verio.net!iad-feed.news.verio.net!iad-peer.news.verio.net!news.verio.net!news.maxwell.syr.edu!newsfeed1.cidera.com!Cidera!cyclone.tampabay.rr.com!news-post.tampabay.rr.com!twister.southeast.rr.com.POSTED!53ab2750!not-for-mail
From: "Eric Almond" <eric672@carolina.rr.comTRASH>
Newsgroups: comp.protocols.kermit.misc
References: <fZxJ8.43814$6v2.1770330@twister.southeast.rr.com> <ad6nke$6ca$1@newsmaster.cc.columbia.edu>
Subject: Re: Kermit SSL/TLS Error??
Lines: 94
X-Priority: 3
X-MSMail-Priority: Normal
X-Newsreader: Microsoft Outlook Express 6.00.2600.0000
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
Message-ID: <TnCJ8.44200$6v2.1824853@twister.southeast.rr.com>
Date: Fri, 31 May 2002 03:48:03 GMT
NNTP-Posting-Host: 66.56.121.121
X-Complaints-To: abuse@rr.com
X-Trace: twister.southeast.rr.com 1022816883 66.56.121.121 (Thu, 30 May 2002 23:48:03 EDT)
NNTP-Posting-Date: Thu, 30 May 2002 23:48:03 EDT
Organization: RoadRunner - Carolina
Xref: newsmaster.cc.columbia.edu comp.protocols.kermit.misc:13397
As far as the cipher suites go...I'm not sure and I couldn't find anything
in the release notes or manual for WS_FTP denoting specific ciphers. I did
find this document on their knowledgebase...don't know if it helps any.
Question/Problem: What RFC is implemented for the SSL support in WS_FTP Pro
and WS_FTP Server?
Answer/Solution: The mechanism that can be used by FTP clients and servers
to implement security and authentication using the TLS protocol is defined
by [RFC-2246] and the extensions to the FTP protocol defined by [RFC-2228]
as described by Ford-Hutchinson, Carpenter, Hudson, Murray & Wiegand in
their internet draft dated January 26, 2000.
I'll call IPSwitch's support line tomorrow to see if I can get specific info
for you...
Here is the script I'm running. As you can see its pretty basic stuff...
#!/opt/kermit/bin/kermit +
SET AUTH TLS VERBOSE ON
SET AUTH SSL VERBOSE ON
SET AUTH TLS DEBUG ON
SET AUTH SSL DEBUG ON
SET FTP VERBOSE ON
SET FTP DEBUG ON
SET AUTH SSL VERIFY-FILE /opt/kermit/certs/ca_certs.pem
SET FTP AUTOLOGIN ON ; default setting
SET FTP AUTHTYPE TLS SSL
;SET FTP AUTOAUTHENTICATION ON ; default setting
;SET FTP AUTOENCRYPTION ON ; default setting
;SET FTP COMMAND-PROTECTION-LEVEL PRIVATE ; default setting
;SET FTP DATA-PROTECTION-LEVEL PRIVATE ; default setting
if not defined \%1 exit 1 Usage: \%0 filename
if not exist \%1 exit 1 \%1: File not found
if not readable \%1 exit 1 \%1: File not readable
ftp open ftp.xxxxx.com 21 /user:Anonymous /password:xxx@xxxxx.com
if fail exit 1 Connection failed
if not \v(ftp_loggedin) exit 1 Login failed
ftp cd /upload
if fail exit 1 ftp cd upload: \v(ftp_message)
ftp put \%1
if fail exit 1 ftp put \%1: \v(ftp_message)
ftp bye
exit
"Jeffrey Altman" <jaltman@watsun.cc.columbia.edu> wrote in message
news:ad6nke$6ca$1@newsmaster.cc.columbia.edu...
> In article <fZxJ8.43814$6v2.1770330@twister.southeast.rr.com>,
> Eric Almond <eric672@carolina.rr.comTRASH> wrote:
> : I'm using C-Kermit 8.0.201 on an AIX 4.3.3 box. I'm getting an error
while
> : trying to negotiate a TLS or SSL connection. I'm not sure if there is
an
> : issue with how I've got C-Kermit & OpenSSL configured or if its a
problem
> : with WS_FTP Server or something misconfigured between us. Could it be a
> : problem with the SSL connection trying to traverse through firewalls??
As
> : you can see below its sending the file but its not encrypting it as it
> : should be. I've tested this same script with on another Secure FTP
server
> : and it works like a champ...but its not a WS_FTP Server and its on the
> : internal network. I'm very new to Kermit so any help is appreciated.
Any
> : ideas??
> : Thanks in Advance!
> : Eric
>
> : =>START SSL/TLS connect on COMMAND
> : SSL_handshake:UNKWN before/connect initialization
> : SSL_connect:UNKWN before/connect initialization
> : SSL_connect:3WCH_A SSLv3 write client hello A
> : SSL_connect:error in 3RSH_A SSLv3 read server hello A
> : ftp: SSL/TLS connect COMMAND error:
error:00000000:lib(0):func(0):reason(0)
> : =>DONE SSL/TLS connect on COMMAND
>
> The TLS handshake is failing. What commands are you executing?
>
> What cipher suites does the WS_FTP server support?
>
> Jeffrey Altman * Sr.Software Designer Kermit 95 1.1.21 available
now!!!
> The Kermit Project @ Columbia University SSH plus Telnet, FTP and HTTP
> http://www.kermit-project.org/ secured with Kerberos, SRP,
and
> kermit-support@columbia.edu OpenSSL.