FreeBSD SSL/TLS problem

Tue, 25 May 2004 07:55:44 -0700 

Hi

I try to connect to a SSL enabled FTP server. FTP server forces 
ciphering on control connection. Linux build works, while FreeBSD not. 

Testing environement:
---------------------

        FTP Server
            |
          WORLD  
            |  
        public IP
      Firewall (NAT)
       192.168.1.1
            |
      ______|______
     |             |
   Linux        FreeBSD
192.168.1.2   192.168.1.3

Server : proftpd w/SSL, SSL forced on control connection
Linux  : lftp version   : 3.0.4
         openssl version: 0.9.7d
         build from sources
FreeBSD: lftp version   : 3.0.4
         openssl version: 0.9.7d
         build from sources

Client tests performed at the same time

Test results
------------

Linux:
$ lftp -u user 100.100.100.100
Password:
lftp [EMAIL PROTECTED]:~> debug
lftp [EMAIL PROTECTED]:~> ls
---- Connecting to 100.100.100.100 (100.100.100.100) port 21
<--- 220 FTPd
---> FEAT
<--- 550 SSL/TLS required on the control channel
---> AUTH TLS
<--- 234 AUTH TLS successful
---> USER user
Certificate depth: 1 
[... cert data omitted... ]
<--- 331 Password required for user.
---> PASS XXXX
<--- 230 Welcome to server, user.
---> PWD
<--- 257 "/" is current directory.
---> PBSZ 0
<--- 200 PBSZ 0 successful
---> PROT P
<--- 200 Protection set to Private
---> PASV
<--- 227 Entering Passive Mode (100.100.100.100,17,44).
---- Connecting data socket to (100.100.100.100) port 4396
---> LIST
<--- 150 Opening ASCII mode data connection for file list
---- Closing data socket
drwxr-xr-x 109 ftp      ftp          9216 May 23 06:49 Pub
<--- 226 Transfer complete.
drwxr-xr-x 166 ftp      ftp           512 May 25 11:00 Incoming
drwxr-xr-x  13 ftp      ftp           512 Mar 26 17:18 Usr
drwxr-xr-x  19 ftp      ftp          1024 Mar 17 18:12 Var

FreeBSD:
$ lftp -u user 100.100.100.100

Password:
lftp [EMAIL PROTECTED]:~> debug
lftp [EMAIL PROTECTED]:~> ls
---- Connecting to 100.100.100.100 () port 21
<--- 220 FTPd
---> FEAT
<--- 550 SSL/TLS required on the control channel
---> AUTH TLS
<--- 234 AUTH TLS successful
---> USER user
Certificate depth: 1 
[... cert data omitted... ]
<--- 331 Password required for user.
---> PASS XXXX
<--- 230 Welcome to server, user.
---> PWD
<--- 257 "/" is current directory.
---> PBSZ 0
<--- 200 PBSZ 0 successful
---> PROT P
<--- 200 Protection set to Private
---> PASV
<--- 227 Entering Passive Mode (100.100.100.100,14,55).
---- Connecting data socket to () port 3639
> ---> LIST   
[ here the session hangs ]

I only see one small difference in Linux and FreeBSD builds debug - 
FreeBSD doesn't show the IP address of the server it's about to connect 
( ---- Connecting data socket to () port 3639 )

What to do next?

MJ.

-- 
[EMAIL PROTECTED]

Reply via email to