On Saturday, January 16, 2021 2:23:43 PM CST Boyd Stephen Smith Jr. wrote: > On Friday, January 15, 2021 12:02:35 PM CST Andreas Metzler wrote: > > Is this reproducible with gnutls-cli? > > That works: > > But, I clearly don't know enough about raw FTP protocol to get a data > transfer started: > > Note that connection in both FileZilla and lftp only fails once I try to > list the contents of the current directory. They are port able to connect > and login as well.
I tried again, but I'm betting gnutls-cli doesn't handle the weirdness that is FTP well. I'm going to try to do a passive transfer, because I'm behind at least one NAT, so I don't think active transfer is going to work: It starts as before with the certificate, and me logging in: ---8<--- 230 Login successful. PBSZ 0 200 PBSZ set to 0. PROT P 200 PROT now Private. PASV 227 Entering Passive Mode (8,48,33,7,5,1). LIST ---8<--- Here the connect appears to hang for too long, and I end up sending some more commands before the LIST command ends ---8<--- HELP PWD 425 Failed to establish connection. 214-The following commands are recognized. ABOR ACCT ALLO APPE CDUP CWD DELE EPRT EPSV FEAT HELP LIST MDTM MKD MODE NLST NOOP OPTS PASS PASV PORT PWD QUIT REIN REST RETR RMD RNFR RNTO SITE SIZE SMNT STAT STOR STOU STRU SYST TYPE USER XCUP XCWD XMKD XPWD XRMD 214 Help OK. 257 "/" PASV 227 Entering Passive Mode (8,48,33,7,4,225). LIST 425 Failed to establish connection. --->8--- For that last LIST, I simply waited calmly until I got the result. (The password I sent in plaintext earlier is no longer valid, BTW.) If you think PASV is the issue, I should be able to retry from a system that's not NAT'd or otherwise configure the network for a PORT connection. But, I don't know GNU TLS is going to handle that any better. Let me know if it is worth an attempt. If you've got some hints on how to use gnutls-cli for a PASV transfer, I'll gladly take them. -- Boyd Stephen Smith Jr. ,= ,-_-. =. b...@iguanasuicide.net ((_/)o o(\_)) Twitter: @DaTwinkDaddy `-'(. .)`-' http://iguanasuicide.net/ \_/
signature.asc
Description: This is a digitally signed message part.
