Access hidden FTP server via Tor proxy

Advertisement

ilhda
Joined:
Posts:
4

Access hidden FTP server via Tor proxy

With WinSCP I can connect to my hidden FTP server.
After connecting I can't download or upload.
Some other FTP commands do work fine.
Like pwd or stat.

File protocol: FTP
Encryption: No
Port: 21

Software Versions:
WinSCP v5.5.3
FileZilla Server v0.9.44 beta
Tor v0.2.4.22

This is my setup:
ServerComp:
OS: Windows 7 SP1 64-bit
FileZilla Server on port 21
Tor configured as hidden server

ClientComp:
OS: Windows 7 SP1 64-bit
WinSCP:
Tor used as proxy

--------ServerComp Config--------
Command Prompt: tor --defaults-torrc torrc
config file: torrc
options set in torrc:
HiddenServiceDir DIRECTORY
HiddenServicePort 2121 127.0.0.1:21

FileZilla Server config:
nothing special, I have setup a user with password and a home directory with read and write rights.
---------------------------------

--------ClientComp Config--------
Command Prompt: tor --defaults-torrc torrc
config file: "torrc" - original/nothing changed

WinSCP Config:
Command Prompt: winscp /log=log.txt /script=script.txt
script file: "script.txt"
open ftp://user:password@ucz2y6fhztqxowyi.onion:2121/ -rawsettings ProxyMethod=2 ProxyHost=127.0.0.1 ProxyPort=9050
WinSCP Directory: I have created a empty file "WinSCP.ini"
-------------------------------

-------Tor torrc is valid------
I did execute this command on both computers.
Command Prompt: tor --defaults-torrc torrc --verify-config
CMD response: [notice] Read configuration file "C:\tor\torrc".
CMD response: Configuration was valid
-------------------------------

Reply with quote

Advertisement

ilhda
Joined:
Posts:
4

WinSCP Log File

. 2014-05-23 18:07:27.636 --------------------------------------------------------------------------
. 2014-05-23 18:07:27.636 WinSCP Version 5.5.3 (Build 4214) (OS 6.1.7601 Service Pack 1 - Windows 7 Ultimate)
. 2014-05-23 18:07:27.636 Configuration: C:\winscp\WinSCP.ini
. 2014-05-23 18:07:27.636 Local account: 8A7E8DAE\E8E96E9A
. 2014-05-23 18:07:27.636 Working directory: C:\winscp
. 2014-05-23 18:07:27.636 Process ID: 2964
. 2014-05-23 18:07:27.636 Command-line: "C:\winscp\WinSCP.exe" /console=553 /consoleinstance=_2956_760 "/log=log.txt" "/script=script.txt"
. 2014-05-23 18:07:27.636 Time zone: Current: GMT-7, Standard: GMT-8 (Pacific Standard Time), DST: GMT-7 (Pacific Daylight Time), DST Start: 3/9/2014, DST End: 11/2/2014
. 2014-05-23 18:07:27.636 Login time: Friday, May 23, 2014 6:07:27 PM
. 2014-05-23 18:07:27.636 --------------------------------------------------------------------------
. 2014-05-23 18:07:27.636 Script: Retrospectively logging previous script records:
> 2014-05-23 18:07:27.636 Script: open ftp://user:***@ucz2y6fhztqxowyi.onion:2121/ -rawsettings ProxyMethod=2 ProxyHost=127.0.0.1 ProxyPort=9050
. 2014-05-23 18:07:27.636 --------------------------------------------------------------------------
. 2014-05-23 18:07:27.636 Session name: user@ucz2y6fhztqxowyi.onion (Ad-Hoc site)
. 2014-05-23 18:07:27.636 Host name: ucz2y6fhztqxowyi.onion (Port: 2121)
. 2014-05-23 18:07:27.636 User name: user (Password: Yes, Key file: No)
. 2014-05-23 18:07:27.636 Tunnel: No
. 2014-05-23 18:07:27.636 Transfer Protocol: FTP
. 2014-05-23 18:07:27.636 Ping type: C, Ping interval: 30 sec; Timeout: 15 sec
. 2014-05-23 18:07:27.636 Proxy: SOCKS5
. 2014-05-23 18:07:27.636 HostName: 127.0.0.1 (Port: 9050); Username: ; Passwd: No
. 2014-05-23 18:07:27.636 Send buffer: 262144
. 2014-05-23 18:07:27.636 FTP: FTPS: None; Passive: Yes [Force IP: A]; MLSD: A [List all: A]
. 2014-05-23 18:07:27.636 Local directory: default, Remote directory: home, Update: Yes, Cache: Yes
. 2014-05-23 18:07:27.636 Cache directory changes: Yes, Permanent: Yes
. 2014-05-23 18:07:27.636 DST mode: 1; Timezone offset: 0h 0m
. 2014-05-23 18:07:27.636 --------------------------------------------------------------------------
. 2014-05-23 18:07:27.636 Connecting to ucz2y6fhztqxowyi.onion:2121 ...
. 2014-05-23 18:07:27.927 Connected with ucz2y6fhztqxowyi.onion:2121. Waiting for welcome message...
< 2014-05-23 18:07:28.259 220-FileZilla Server version 0.9.44 beta
< 2014-05-23 18:07:28.259 220-written by Tim Kosse (tim.kosse@filezilla-project.org)
< 2014-05-23 18:07:28.259 220 Please visit https://sourceforge.net/projects/filezilla/
> 2014-05-23 18:07:28.259 USER user
< 2014-05-23 18:07:28.571 331 Password required for user
> 2014-05-23 18:07:28.571 PASS ********
< 2014-05-23 18:07:28.904 230 Logged on
> 2014-05-23 18:07:28.904 SYST
< 2014-05-23 18:07:29.236 215 UNIX emulated by FileZilla
> 2014-05-23 18:07:29.236 FEAT
< 2014-05-23 18:07:29.590 211-Features:
< 2014-05-23 18:07:29.922 MDTM
< 2014-05-23 18:07:29.922 REST STREAM
< 2014-05-23 18:07:29.922 SIZE
< 2014-05-23 18:07:29.922 MLST type*;size*;modify*;
< 2014-05-23 18:07:29.922 MLSD
< 2014-05-23 18:07:29.922 UTF8
< 2014-05-23 18:07:29.922 CLNT
< 2014-05-23 18:07:29.922 MFMT
< 2014-05-23 18:07:29.922 211 End
. 2014-05-23 18:07:29.922 Connected
. 2014-05-23 18:07:29.922 --------------------------------------------------------------------------
. 2014-05-23 18:07:29.922 Using FTP protocol.
. 2014-05-23 18:07:29.922 Doing startup conversation with host.
> 2014-05-23 18:07:29.922 PWD
< 2014-05-23 18:07:30.193 257 "/" is current directory.
. 2014-05-23 18:07:30.193 Getting current directory name.
. 2014-05-23 18:07:30.193 Startup conversation with host finished.
< 2014-05-23 18:07:30.193 Script: Active session: [1] user@ucz2y6fhztqxowyi.onion
> 2014-05-23 18:07:40.847 Script: pwd
< 2014-05-23 18:07:40.847 Script: /
> 2014-05-23 18:07:43.804 Script: stat file.txt
. 2014-05-23 18:07:43.804 Listing file "file.txt".
. 2014-05-23 18:07:43.804 Retrieving file information...
> 2014-05-23 18:07:43.804 MLST file.txt
< 2014-05-23 18:07:44.122 250-Listing /file.txt
< 2014-05-23 18:07:44.122 type=file;size=4;modify=20140523200439; /file.txt
< 2014-05-23 18:07:44.122 250 End
. 2014-05-23 18:07:44.122 type=file;size=4;modify=20140523200439; /file.txt
. 2014-05-23 18:07:44.122 Retrieving file information successful
. 2014-05-23 18:07:44.122 file.txt;-;4;2014-05-23T20:04:39.000Z;"" [0];"" [0];---------;0
< 2014-05-23 18:07:44.122 Script: ---------- 0 4 May 23 13:04:39 2014 file.txt
> 2014-05-23 18:07:50.440 Script: get file.txt
. 2014-05-23 18:07:50.440 Listing file "file.txt".
. 2014-05-23 18:07:50.440 Retrieving file information...
> 2014-05-23 18:07:50.440 MLST file.txt
< 2014-05-23 18:07:50.693 250-Listing /file.txt
< 2014-05-23 18:07:50.693 type=file;size=4;modify=20140523200439; /file.txt
< 2014-05-23 18:07:50.693 250 End
. 2014-05-23 18:07:50.693 type=file;size=4;modify=20140523200439; /file.txt
. 2014-05-23 18:07:50.693 Retrieving file information successful
. 2014-05-23 18:07:50.693 file.txt;-;4;2014-05-23T20:04:39.000Z;"" [0];"" [0];---------;0
. 2014-05-23 18:07:50.693 File: '/file.txt' [2014-05-23T20:04:39.000Z] [4]
. 2014-05-23 18:07:50.693 Copying "/file.txt" to local directory started.
. 2014-05-23 18:07:50.693 Binary transfer mode selected.
. 2014-05-23 18:07:50.693 Starting download of /file.txt
> 2014-05-23 18:07:50.693 TYPE I
< 2014-05-23 18:07:51.013 200 Type set to I
> 2014-05-23 18:07:51.013 PASV
< 2014-05-23 18:07:51.232 227 Entering Passive Mode (127,0,0,1,192,16)
> 2014-05-23 18:07:51.232 RETR file.txt
. 2014-05-23 18:07:51.232 Proxy request failed, can't connect through proxy server
. 2014-05-23 18:07:51.232 Transfer channel can't be opened. Reason: An established connection was aborted by the software in your host machine.
. 2014-05-23 18:07:51.249 Copying files from remote side failed.
* 2014-05-23 18:07:51.249 (ExtException) **Proxy request failed, can't connect through proxy server**
* 2014-05-23 18:07:51.249 Transfer channel can't be opened. Reason: An established connection was aborted by the software in your host machine.
* 2014-05-23 18:07:51.249 Copying files from remote side failed.
. 2014-05-23 18:07:51.249 Asking user:
. 2014-05-23 18:07:51.249 Error transferring file '/file.txt'. ("Proxy request failed, can't connect through proxy server","Transfer channel can't be opened. Reason: An established connection was aborted by the software in your host machine.","Copying files from remote side failed.")
< 2014-05-23 18:07:51.249 Script: Error transferring file '/file.txt'.
< 2014-05-23 18:07:51.249 Script: Proxy request failed, can't connect through proxy server

< 2014-05-23 18:07:51.249 Transfer channel can't be opened. Reason: An established connection was aborted by the software in your host machine.

< 2014-05-23 18:07:51.249 Copying files from remote side failed.
* 2014-05-23 18:08:00.522 (EScpSkipFile) Error transferring file '/file.txt'.
* 2014-05-23 18:08:00.522 Proxy request failed, can't connect through proxy server
* 2014-05-23 18:08:00.522 Transfer channel can't be opened. Reason: An established connection was aborted by the software in your host machine.
* 2014-05-23 18:08:00.522 Copying files from remote side failed.
. 2014-05-23 18:08:00.522 Script: Failed
> 2014-05-23 18:08:50.856 Script: lpwd
< 2014-05-23 18:08:50.856 Script: C:\winscp
< 2014-05-23 18:08:50.856 425 Can't open data connection for transfer of "/file.txt"
> 2014-05-23 18:08:50.856 REST 0
< 2014-05-23 18:08:50.856 350 Rest supported. Restarting at 0
> 2014-05-23 18:09:02.212 Script: put test.bin
. 2014-05-23 18:09:02.212 Copying 1 files/directories to remote directory "/"
. 2014-05-23 18:09:02.212 PrTime: Yes; PrRO: No; Rght: rw-r--r--; PrR: No (No); FnCs: N; RIC: 0100; Resume: S (102400); CalcS: No; Mask:
. 2014-05-23 18:09:02.212 TM: B; ClAr: No; RemEOF: No; RemBOM: No; CPS: 0; NewerOnly: No; InclM:
. 2014-05-23 18:09:02.212 AscM: *.*html; *.htm; *.txt; *.php; *.php3; *.cgi; *.c; *.cpp; *.h; *.pas; *.bas; *.tex; *.pl; *.js; .htaccess; *.xtml; *.css; *.cfg; *.ini; *.sh; *.xml
. 2014-05-23 18:09:02.212 File: 'test.bin' [2014-05-24T01:08:31.683Z] [5]
. 2014-05-23 18:09:02.212 Copying "test.bin" to remote directory started.
. 2014-05-23 18:09:02.212 Binary transfer mode selected.
> 2014-05-23 18:09:02.228 TYPE I
< 2014-05-23 18:09:02.228 200 Type set to I
. 2014-05-23 18:09:02.228 Starting upload of test.bin
> 2014-05-23 18:09:02.228 TYPE I
< 2014-05-23 18:09:02.503 200 Type set to I
> 2014-05-23 18:09:02.503 PASV
< 2014-05-23 18:09:02.826 227 Entering Passive Mode (127,0,0,1,192,17)
> 2014-05-23 18:09:02.826 STOR test.bin
. 2014-05-23 18:09:02.826 Proxy request failed, can't connect through proxy server
. 2014-05-23 18:09:02.826 Transfer channel can't be opened. Reason: An established connection was aborted by the software in your host machine.
. 2014-05-23 18:09:02.826 Copying files to remote side failed.
* 2014-05-23 18:09:02.826 (ExtException) **Proxy request failed, can't connect through proxy server**
* 2014-05-23 18:09:02.826 Transfer channel can't be opened. Reason: An established connection was aborted by the software in your host machine.
* 2014-05-23 18:09:02.826 Copying files to remote side failed.
. 2014-05-23 18:09:02.826 Asking user:
. 2014-05-23 18:09:02.826 Error transferring file 'test.bin'. ("Proxy request failed, can't connect through proxy server","Transfer channel can't be opened. Reason: An established connection was aborted by the software in your host machine.","Copying files to remote side failed.")
< 2014-05-23 18:09:02.826 Script: Error transferring file 'test.bin'.
< 2014-05-23 18:09:02.826 Script: Proxy request failed, can't connect through proxy server

< 2014-05-23 18:09:02.826 Transfer channel can't be opened. Reason: An established connection was aborted by the software in your host machine.

< 2014-05-23 18:09:02.826 Copying files to remote side failed.
* 2014-05-23 18:09:07.372 (EScpSkipFile) Error transferring file 'test.bin'.
* 2014-05-23 18:09:07.372 Proxy request failed, can't connect through proxy server
* 2014-05-23 18:09:07.372 Transfer channel can't be opened. Reason: An established connection was aborted by the software in your host machine.
* 2014-05-23 18:09:07.372 Copying files to remote side failed.
. 2014-05-23 18:09:07.372 Script: Failed
> 2014-05-23 18:09:18.145 Script: exit
< 2014-05-23 18:09:18.145 425 Can't open data connection for transfer of "/test.bin"
. 2014-05-23 18:09:18.145 Script: Exit code: 1
. 2014-05-23 18:09:18.163 Disconnected from server

Reply with quote

ilhda
Joined:
Posts:
4

FileZilla Server Log File

(000003)5/23/2014 17:07:28 PM - (not logged in) (127.0.0.1)> Connected, sending welcome message...
(000003)5/23/2014 17:07:28 PM - (not logged in) (127.0.0.1)> 220-FileZilla Server version 0.9.44 beta
(000003)5/23/2014 17:07:28 PM - (not logged in) (127.0.0.1)> 220-written by Tim Kosse (tim.kosse@filezilla-project.org)
(000003)5/23/2014 17:07:28 PM - (not logged in) (127.0.0.1)> 220 Please visit https://sourceforge.net/projects/filezilla/
(000003)5/23/2014 17:07:28 PM - (not logged in) (127.0.0.1)> USER user
(000003)5/23/2014 17:07:28 PM - (not logged in) (127.0.0.1)> 331 Password required for user
(000003)5/23/2014 17:07:28 PM - (not logged in) (127.0.0.1)> PASS ********
(000003)5/23/2014 17:07:28 PM - user (127.0.0.1)> 230 Logged on
(000003)5/23/2014 17:07:29 PM - user (127.0.0.1)> SYST
(000003)5/23/2014 17:07:29 PM - user (127.0.0.1)> 215 UNIX emulated by FileZilla
(000003)5/23/2014 17:07:29 PM - user (127.0.0.1)> FEAT
(000003)5/23/2014 17:07:29 PM - user (127.0.0.1)> 211-Features:
(000003)5/23/2014 17:07:29 PM - user (127.0.0.1)> MDTM
(000003)5/23/2014 17:07:29 PM - user (127.0.0.1)> REST STREAM
(000003)5/23/2014 17:07:29 PM - user (127.0.0.1)> SIZE
(000003)5/23/2014 17:07:29 PM - user (127.0.0.1)> MLST type*;size*;modify*;
(000003)5/23/2014 17:07:29 PM - user (127.0.0.1)> MLSD
(000003)5/23/2014 17:07:29 PM - user (127.0.0.1)> UTF8
(000003)5/23/2014 17:07:29 PM - user (127.0.0.1)> CLNT
(000003)5/23/2014 17:07:29 PM - user (127.0.0.1)> MFMT
(000003)5/23/2014 17:07:29 PM - user (127.0.0.1)> 211 End
(000003)5/23/2014 17:07:29 PM - user (127.0.0.1)> PWD
(000003)5/23/2014 17:07:29 PM - user (127.0.0.1)> 257 "/" is current directory.
(000003)5/23/2014 17:07:40 PM - user (127.0.0.1)> MLST file.txt
(000003)5/23/2014 17:07:40 PM - user (127.0.0.1)> 250-Listing /file.txt
(000003)5/23/2014 17:07:40 PM - user (127.0.0.1)> type=file;size=4;modify=20140523200439; /file.txt
(000003)5/23/2014 17:07:40 PM - user (127.0.0.1)> 250 End
(000003)5/23/2014 17:07:46 PM - user (127.0.0.1)> MLST file.txt
(000003)5/23/2014 17:07:46 PM - user (127.0.0.1)> 250-Listing /file.txt
(000003)5/23/2014 17:07:46 PM - user (127.0.0.1)> type=file;size=4;modify=20140523200439; /file.txt
(000003)5/23/2014 17:07:46 PM - user (127.0.0.1)> 250 End
(000003)5/23/2014 17:07:46 PM - user (127.0.0.1)> TYPE I
(000003)5/23/2014 17:07:46 PM - user (127.0.0.1)> 200 Type set to I
(000003)5/23/2014 17:07:46 PM - user (127.0.0.1)> PASV
(000003)5/23/2014 17:07:46 PM - user (127.0.0.1)> 227 Entering Passive Mode (127,0,0,1,192,16)
(000003)5/23/2014 17:07:47 PM - user (127.0.0.1)> RETR file.txt
(000003)5/23/2014 17:07:57 PM - user (127.0.0.1)> 425 Can't open data connection for transfer of "/file.txt"
(000003)5/23/2014 17:08:19 PM - user (127.0.0.1)> REST 0
(000003)5/23/2014 17:08:19 PM - user (127.0.0.1)> 350 Rest supported. Restarting at 0
(000003)5/23/2014 17:08:57 PM - user (127.0.0.1)> TYPE I
(000003)5/23/2014 17:08:57 PM - user (127.0.0.1)> 200 Type set to I
(000003)5/23/2014 17:09:08 PM - user (127.0.0.1)> TYPE I
(000003)5/23/2014 17:09:08 PM - user (127.0.0.1)> 200 Type set to I
(000003)5/23/2014 17:09:08 PM - user (127.0.0.1)> PASV
(000003)5/23/2014 17:09:08 PM - user (127.0.0.1)> 227 Entering Passive Mode (127,0,0,1,192,17)
(000003)5/23/2014 17:09:08 PM - user (127.0.0.1)> STOR test.bin
(000003)5/23/2014 17:09:18 PM - user (127.0.0.1)> 425 Can't open data connection for transfer of "/test.bin"
(000003)5/23/2014 17:09:22 PM - user (127.0.0.1)> disconnected.

Reply with quote

ilhda

Tor Console Response

-----Tor CMD response - ClientComp-----
[warn] Rejecting SOCKS request for anonymous connection to private address [scrubbed].
---------------------------------------

Reply with quote

Advertisement

anon4323423
Guest

People run TOR exit nodes precisely for this reason -- to pick up unencrypted login information. Using FTP through TOR you're basically handing some stranger(s) your password.

Reply with quote

Advertisement

You can post new topics in this forum