> lftp :~> open -uXXXX,XXXX -pXXXX ftps://XXXX.XXXX.com The above line is your problem. In lftp, an 'ftps' prefix indicates implicit ssl, and your vendor requires explicit. Try changing the line to this instead: lftp :~> open -uXXXX,XXXX -pXXXX ftp://XXXX.XXXX.com
On Fri, Aug 20, 2010 at 11:14 AM, Joshua Hess <joshua_7...@yahoo.com> wrote: > Greetings, > > I cannot connect to an ftps site using lftp, and I do not know what I am > doing incorrectly. > > There are no firewall issues on the client side. > > Any help would be appreciated! Thank you! > > Josh > > 1) Vendor Instructions - > We use the FTP/SSL port number of XXXX (for the control port) > We only support Explicit (AUTH SSL) FTP/SSL - not Implicit SSL. > We only support Passive mode transfers. > The Server responds on ports XXXX to XXXX for its data channel for clients > initiating FTP/SSL in Passive mode. > > 2) My session: > > lftp :~> debug 13 > lftp :~> open -uXXXX,XXXX -pXXXX ftps://XXXX.XXXX.com > ---- Resolving host address... > ---- 1 address found: xxx.xxx.xxx.xxx > lftp x...@xxxx.xxxx.com:~> ls > FileCopy(0x8ed6148) enters state INITIAL > FileCopy(0x8ed6148) enters state DO_COPY > ---- dns cache hit > ---- Connecting to XXXX.XXXX.com (xxx.xxx.xxx.xxx) port XXXX > **** SSL_connect: unknown protocol > ---- Closing control socket > ls: Fatal error: SSL_connect: unknown protocol > > > 3) My lftp set -a > > set bmk:auto-sync yes > set bmk:save-passwords no > set cache:cache-empty-listings no > set cache:enable yes > set cache:expire 60m > set cache:expire-negative 1m > set cache:size 16M > set cmd:at-exit "" > set cmd:cls-completion-default -FB > set cmd:cls-default -F > set cmd:csh-history off > set cmd:default-protocol ftp > set cmd:default-title "lftp \\h:\\w" > set cmd:fail-exit no > set cmd:interactive no > set cmd:long-running 30 > set cmd:ls-default "" > set cmd:move-background yes > set cmd:move-background-detach yes > set cmd:parallel 1 > set cmd:prompt "lftp \\S\\? \\...@\\h:\\w> " > set cmd:queue-parallel 1 > set cmd:remote-completion on > set cmd:save-cwd-history yes > set cmd:save-rl-history yes > set cmd:set-term-status no > set cmd:status-interval 0.8s > set cmd:stifle-rl-history 500 > set cmd:term-status "" > set cmd:time-style "%b %e %Y|%b %e %H:%M" > set cmd:trace no > set cmd:verbose no > set cmd:verify-host yes > set cmd:verify-path yes > set cmd:verify-path-cached no > set color:dir-colors > "no=00:fi=00:di=00;34:ln=00;36:pi=40;33:so=00;35:bd=40;33;01:cd=40;33;01:or=01;05;37;41:mi=01;05;37;41:ex=00;32:*.cmd=00;32:*.exe=00;32:*.com=00;32:*.btm=00;32:*.bat=00;32:*.sh=00;32:*.csh=00;32:*.tar=00;31:*.tgz=00;31:*.arj=00;31:*.taz=00;31:*.lzh=00;31:*.zip=00;31:*.z=00;31:*.Z=00;31:*.gz=00;31:*.bz2=00;31:*.bz=00;31:*.tz=00;31:*.rpm=00;31:*.cpio=00;31:*.jpg=00;35:*.gif=00;35:*.bmp=00;35:*.xbm=00;35:*.xpm=00;35:*.png=00;35:*.tif=00;35:" > set color:use-color auto > set dns:SRV-query no > set dns:cache-enable yes > set dns:cache-expire 1h > set dns:cache-size 256 > set dns:fatal-timeout 7d > set dns:max-retries 1000 > set dns:order inet > set dns:use-fork yes > set file:charset UTF-8 > set fish:charset "" > set fish:connect-program "ssh -a -x" > set fish:shell /bin/sh > set ftp:abor-max-wait 15s > set ftp:acct "" > set ftp:anon-pass lftp@ > set ftp:anon-user anonymous > set ftp:auto-passive-mode yes > set ftp:auto-sync-mode "" > set ftp:bind-data-socket yes > set ftp:charset "" > set ftp:client lftp/4.0.6 > set ftp:device-prefix no > set ftp:fix-pasv-address yes > set ftp:fxp-force no > set ftp:fxp-passive-source no > set ftp:fxp-passive-sscn yes > set ftp:home "" > set ftp:ignore-pasv-address no > set ftp:lang "" > set ftp:list-empty-ok no > set ftp:list-options "" > set ftp:nop-interval 120 > set ftp:passive-mode on > set ftp:port-ipv4 "" > set ftp:port-range full > set ftp:prefer-epsv no > set ftp:proxy "" > set ftp:proxy-auth-type user > set ftp:rest-list no > set ftp:rest-stor yes > set ftp:retry-530 "too many|overloaded|try (again |back )?later|is restricted > to|maximum number|number of connect only.*session.*allowed|more > connection|already connected|simultaneous login" > set ftp:retry-530-anonymous "Login incorrect" > set ftp:site-group "" > set ftp:skey-allow yes > set ftp:skey-force no > set ftp:ssl-allow yes > set ftp:ssl-allow-anonymous no > set ftp:ssl-auth SSL > set ftp:ssl-copy-sid yes > set ftp:ssl-data-use-keys yes > set ftp:ssl-force on > set ftp:ssl-protect-data yes > set ftp:ssl-protect-fxp no > set ftp:ssl-protect-list on > set ftp:ssl-shutdown-timeout 5 > set ftp:ssl-use-ccc yes > set ftp:stat-interval 1 > set ftp:sync-mode on > set ftp:timezone GMT > set ftp:trust-feat no > set ftp:use-abor yes > set ftp:use-allo yes > set ftp:use-feat yes > set ftp:use-fxp yes > set ftp:use-hftp yes > set ftp:use-mdtm yes > set ftp:use-mdtm-overloaded no > set ftp:use-mlsd no > set ftp:use-pret yes > set ftp:use-quit yes > set ftp:use-site-chmod yes > set ftp:use-site-idle no > set ftp:use-site-utime yes > set ftp:use-site-utime2 yes > set ftp:use-size yes > set ftp:use-stat yes > set ftp:use-stat-for-list no > set ftp:use-telnet-iac yes > set ftp:verify-address no > set ftp:verify-port no > set ftp:waiting-150-timeout 5 > set ftp:web-mode off > set ftps:initial-prot P > set hftp:cache yes > set hftp:cache-control "" > set hftp:proxy "" > set hftp:use-authorization yes > set hftp:use-head yes > set hftp:use-mkcol no > set hftp:use-propfind no > set hftp:use-type yes > set http:accept */* > set http:accept-charset "" > set http:accept-language "" > set http:authorization "" > set http:cache yes > set http:cache-control "" > set http:cookie "" > set http:post-content-type application/x-www-form-urlencoded > set http:proxy "" > set http:put-content-type "" > set http:put-method PUT > set http:referer "" > set http:set-cookies no > set http:use-mkcol yes > set http:use-propfind no > set http:user-agent lftp/4.0.6 > set https:proxy "" > set mirror:dereference no > set mirror:exclude-regex "(^|/)(\\.in\\.|\\.nfs)" > set mirror:include-regex "" > set mirror:order "*.sfv *.sig *.md5* *.sum * */" > set mirror:parallel-directories yes > set mirror:parallel-transfer-count 1 > set mirror:set-permissions yes > set mirror:skip-noaccess no > set mirror:use-pget-n 1 > set module:path /usr/local/lib/lftp/4.0.6:/usr/local/lib/lftp > set net:connection-limit 0 > set net:connection-takeover yes > set net:idle 3m > set net:limit-max 0 > set net:limit-rate 0:0 > set net:limit-total-max 0 > set net:limit-total-rate 0:0 > set net:max-retries 1000 > set net:no-proxy "" > set net:persist-retries 0 > set net:reconnect-interval-base 30 > set net:reconnect-interval-max 600 > set net:reconnect-interval-multiplier 1.5 > set net:socket-bind-ipv4 "" > set net:socket-bind-ipv6 "" > set net:socket-buffer 0 > set net:socket-maxseg 0 > set net:timeout 5m > set pget:default-n 5 > set pget:save-status 10s > set sftp:charset "" > set sftp:connect-program "ssh -a -x" > set sftp:max-packets-in-flight 16 > set sftp:protocol-version 4 > set sftp:server-program sftp > set sftp:size-read 32k > set sftp:size-write 32k > set sftp:use-full-path yes > set ssl:ca-file /home/test/ca_full.pem > set ssl:ca-path "" > set ssl:cert-file /home/test/download.crt > set ssl:check-hostname yes > set ssl:crl-file "" > set ssl:crl-path "" > set ssl:key-file /home/test/download.key > set ssl:verify-certificate no > set torrent:ip "" > set torrent:max-peers 60 > set torrent:port-range 6881-6889 > set torrent:seed-max-time 30d > set torrent:seed-min-peers 3 > set torrent:stop-on-ratio 2.0 > set xfer:auto-rename no > set xfer:buffer-size 0x10000 > set xfer:clobber yes > set xfer:destination-directory "" > set xfer:disk-full-fatal no > set xfer:eta-period 120 > set xfer:eta-terse yes > set xfer:log yes > set xfer:make-backup yes > set xfer:max-redirections 5 > set xfer:rate-period 15 > set xfer:verify no > set xfer:verify-command "" > > > > >