Re: Filezilla: GnuTLS error when using FTPES
First note: ftps, as a protocol, is what happens when siblings marry. Stapling SSL on top of FTP's dual channels is like stapping skis on a dachsund and calling it a sled: it's amazing it works at all. The necessary dual channels lead to numerous nasty and conflicting local solutions. These work great until they don't, and it's hideously awkward to test with all the different solutions that may arise in between your client and a remote server. This makes the mishandling often out of the control of the hands of any one party. Proxies, firewalls, and even client implementations come up with subtle distinctions that break things. So you might be able to get it to work, but I urge you to revisit whether you need it. (I've had good success with WebDAV over HTTPS, for example, which is also built into most of the same clients and only requires port 443 handled normally, not the dual channels of FTPS.) Second. If you're running an FTPS server, why not use the built-in vsftpd, which supports it as well as can be reasonably well, rather than interweaving Filezilla into the mix? Third. the lftp tool is about as sophisticated as you can get for an FTP/FTPS client. It's very powerful, very scriptable, and even works very well for mirroring and websites. Does lftp work, rather than the command line ftp client itself?
Fwd: Re: Filezilla: GnuTLS error when using FTPES
I forgot to send it to the list. Alain Message original Sujet: Re: Filezilla: GnuTLS error when using FTPES Date : Tue, 17 Jan 2012 22:07:40 +0100 De :Alain Péan alain.p...@lpp.polytechnique.fr Pour : palmerlwatson palmerlwat...@postafiok.hu Hi, I have the exact same problem runnig Filezilla under windows, latest version 3.5.3. The previous version 3.5.2 works. The FTP server is on an Ubuntu 8.04 LTS 64 bit, using vsftpd : $ vsftpd -v vsftpd: version 2.0.6 So I can confirm it seems to be a bug with the latest Filezilla version (3.5.3), using FTPES. Here is the error message I get : GnuTLS error -12: A TLS fatal alert has been received. Alain Le 17/01/2012 19:16, palmerlwatson a écrit : I: /etc/init.d/iptables stop and tried it again with Filezilla. The same error message. I tried it with gftp: I got connection timed out (iptables still off) So I tried with an Ubuntu 11.04 (on the same machine/network, but in VirtualBox). I installed Filezilla from the Ubuntu repositories: root@ubuntu:/home/ubuntu# dpkg -l | grep -i filezilla ii filezilla 3.3.5.1-1ubuntu1 Full-featured graphical FTP/FTPS/SFTP client ii filezilla-common 3.3.5.1-1ubuntu1 Architecture independent files for filezilla root@ubuntu:/home/ubuntu# lsb_release -a No LSB modules are available. Distributor ID:Ubuntu Description: Ubuntu 11.04 Release: 11.04 Codename: natty root@ubuntu:/home/ubuntu# and it worked!! So it looks like the problem isn't on FTP server side. The problem is on FTP client side. If any further info needed please tell me, and I will be glad to give that information. Since I didn't find ftp-ssl package in the SL repositories, I couldn't try out the thing from terminal.. The FTPS password is simple, that's not the problem. Here are my configured repositories: [root@pc ~]# yum repolist repo id repo name status adobe-linux-x86_64 Adobe Systems Incorporated 2 rpmforge RHEL 6.1 - RPMforge.net - dag 4.091 skype Skype Repository 1 sl Scientific Linux 6.1 - x86_64 6.251 sl-security Scientific Linux 6.1 - x86_64 - security updates 847 virtualbox VirtualBox 17 repolist: 11.209 [root@pc ~]# Could it be a problem with the CertificateAuthorities installed (or not installed?) on my PC? Thanks for any help. 2012/1/17 Felip Molllip...@gmail.com: I remember that no much time ago there was an incompatibility with Proftpd and Filezilla and I remember some other problems with these two programs. For example: http://forum.filezilla-project.org/viewtopic.php?f=2t=23101 I suggest you to search on Google for your specific problem to be sure that the cause is your computer, because maybe it is not. With gFTP or another ftp client does it work? best regards 2012/1/17 Ray Van Dolsonra...@bludgeon.org On Tue, Jan 17, 2012 at 04:27:52PM +0100, palmerlwatson wrote: When I'm trying to log in to a server via FTPS with Filezilla I get these FTP messages from the server: Response: 220-This is a private system - No anonymous login Response: 220 You will be disconnected after 60 minutes of inactivity. Command:AUTH TLS Response: 234 AUTH TLS OK. Status: Initializing TLS... Error: GnuTLS error -50: The request is invalid. Error: Failed to initialize TLS. Error: Could not connect to server It worked great before on Fedora 14/Filezilla. But now I'm using Scientific-Linux with Filezilla (I reinstalled my PC from Fedora to Scientific Linu), and it gives this. What am I missing? I installed Scientific Linux as a Normal Desktop from the 64bit DVD: [user@pc ~]$ lsb_release -a LSB Version: :core-4.0-amd64:core-4.0-noarch:graphics-4.0-amd64:graphics-4.0-noarch:printing-4.0-amd64:printing-4.0-noarch Distributor ID:Scientific Description:Scientific Linux release 6.1 (Carbon) Release:6.1 Codename:Carbon [g@a ~]$ rpm -qa | egrep -i filezilla|gnutls gnutls-2.8.5-4.el6.x86_64 [user@pc ~]$ I downloaded Filezilla from here (FileZilla_3.5.3_x86_64-linux-gnu.tar.bz2): http://filezilla-project.org/download.php?type=client because I didn't find it in the repositories. Does anybody knows why do I get this answer? I mean what is the solution to make it work? (again: connection worked with Fedora 14 on the same day.) Thank you! Maybe you have some sort of smart firewall in the middle which doesn't recognize the encrypted traffic as part of an FTP session? (Or perhaps such a firewall exists on the remote side). Ray
hang umounting file systems on reboot
I haven't seen a bugreport anywhere yet, so I thought I'd start here. On SL6 systems, we can't reboot reliably, particularly if someone is logged on the console or if the user initiates the shutdown from the desktop. Have not seen one hang if no automounts are mounted. The last messages on the console are: Unmounting file systems: [ OK ] /home: rcercrcrcrcrcrcrcrcrcrcrcrcrc[...]rcrce init: rc main process (19211) killed by KILL signal The rc is repeated for about 3.5 console lines (note e near beginning and at end is not a typo). A ctrl-alt-delete will start another reboot instance and has always succeeded, but obviously, physically visiting each system does not scale well. Users logged in remotely via ssh seem to get logged out early in the reboot, so that doesn't cause a hang. My guess is that desktop gui user processes are not exiting quickly enough and are keeping a mount busy, but that error message? Yikes. A screenshot of console is attached (basically showing the above so if you can't see it, you're not missing much). We use the automounter via NIS maps. Any advice would be appreciated. Thanks!
Re: SL6 pvops guest on SL5 Xen host
Sorry for the fermi-ized url's below--but if anyone has been able to make SL6 on SL5 work with the corresponding vanilla SL, please let me know too. (SL6 guest on SL6 host works fine with virt-install). Thanks Steve Timm On Wed, 18 Jan 2012, Steven Timm wrote: Has anyone yet successfully been able to install a SL6 guest on a SL5 Xen host? according to TUV it is supposed to be supported but I am having difficulty figuring out what the location URL should be for SL6. In the SL5 on SL5 case I just use the same url that I would use for a normal http install, namely http://linux.fnal.gov/linux/slf57/x86_64/sites/Fermi/ the SL6 boot image seems to indicate that the corresponding URL is http://linux1.fnal.gov/linux/fermi/slf6.1/x86_64/os/ But when I try to do that with virt-install I get the error: ValueError: Could not find an installable distribution at http://linux1.fnal.gov/linux/fermi/slf6.1/x86_64/os/ The code in question, DistroManager.py has code for RHEL4 and RHEL5 as well as sl distro but no difference between version 5 and 6. Looks like it is trying to get ...images/xen/initrd.img and images/xen/vmlinuz, which are there. Is there a newer version of virt-install out there that might be able to handle the 6-on-5 case? Steve Timm -- Steven C. Timm, Ph.D (630) 840-8525 t...@fnal.gov http://home.fnal.gov/~timm/ Fermilab Computing Division, Scientific Computing Facilities, Grid Facilities Department, FermiGrid Services Group, Group Leader. Lead of FermiCloud project. -- Steven C. Timm, Ph.D (630) 840-8525 t...@fnal.gov http://home.fnal.gov/~timm/ Fermilab Computing Division, Scientific Computing Facilities, Grid Facilities Department, FermiGrid Services Group, Group Leader. Lead of FermiCloud project.
Re: SL6 pvops guest on SL5 Xen host
On Jan 18, 2012, at 22:09 , Steven Timm wrote: Sorry for the fermi-ized url's below--but if anyone has been able to make SL6 on SL5 work with the corresponding vanilla SL, please let me know too. Works fine here. But maybe that's just due to of a couple of compatibility symlinks we have: EFI - os/EFI GPL - os/GPL Packages - os/Packages SL - . images - os/images repodata - os/repodata And as the location, we specify http://.../SL/6.1/x86_64 just like we would for SL5. Regards, Stephan (SL6 guest on SL6 host works fine with virt-install). Thanks Steve Timm On Wed, 18 Jan 2012, Steven Timm wrote: Has anyone yet successfully been able to install a SL6 guest on a SL5 Xen host? according to TUV it is supposed to be supported but I am having difficulty figuring out what the location URL should be for SL6. In the SL5 on SL5 case I just use the same url that I would use for a normal http install, namely http://linux.fnal.gov/linux/slf57/x86_64/sites/Fermi/ the SL6 boot image seems to indicate that the corresponding URL is http://linux1.fnal.gov/linux/fermi/slf6.1/x86_64/os/ But when I try to do that with virt-install I get the error: ValueError: Could not find an installable distribution at http://linux1.fnal.gov/linux/fermi/slf6.1/x86_64/os/ The code in question, DistroManager.py has code for RHEL4 and RHEL5 as well as sl distro but no difference between version 5 and 6. Looks like it is trying to get ...images/xen/initrd.img and images/xen/vmlinuz, which are there. Is there a newer version of virt-install out there that might be able to handle the 6-on-5 case? Steve Timm -- Stephan Wiesand DESY - DV - Platanenallee 6 15738 Zeuthen, Germany