ftps with explicit encryption ( SSL and TLS )

Advertisement

earlwer
Donor
Joined:
Posts:
3
Location:
Montreal, Quebec, Canada

ftps with explicit encryption ( SSL and TLS )

Using WinSCP v 4.3.2 and Windows 7 32-bit.

I can login, but cannot view files.
Filezilla works, but WinSCP does not. GUI and script and manual do not work.

I am using:
open ftps://username:password@ftpssl.gateway.servername.net:21 -passive -explicitssl -explicittls -certificate="XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX"

Are both SSL and TLS supported? The GUI pull-down do not allow both.

Log does not show any errors. It says 'Directory listing successful', but nothing actually gets listed.

Reply with quote

Advertisement

earlw
Guest

ftps with explicit encryption ( SSL and TLS )

FileZilla log:

2011-05-27 17:30:07 7212 3 Status: Resolving address of ftpssl.gateway.inovisworks.net
2011-05-27 17:30:07 7212 3 Status: Connecting to <IP ADDRESS HERE>...
2011-05-27 17:30:07 7212 3 Status: Connection established, waiting for welcome message...
2011-05-27 17:30:07 7212 3 Response: 220 SecureLink FTP Proxy (Version 3.0.2.365) ready.
2011-05-27 17:30:07 7212 3 Command: AUTH TLS
2011-05-27 17:30:07 7212 3 Response: 234 AUTH TLS OK. TLS enabled and waiting for negotiation.
2011-05-27 17:30:07 7212 3 Status: Initializing TLS...
2011-05-27 17:30:07 7212 3 Status: Verifying certificate...
2011-05-27 17:30:07 7212 3 Command: USER <USERNAME HERE>
2011-05-27 17:30:07 7212 3 Status: TLS/SSL connection established.
2011-05-27 17:30:07 7212 3 Response: 331 Password required for <USERNAME HERE>.
2011-05-27 17:30:07 7212 3 Command: PASS *******
2011-05-27 17:30:08 7212 3 Response: 230 User <USERNAME HERE> logged in. Session ID 1641217142
2011-05-27 17:30:08 7212 3 Command: SYST
2011-05-27 17:30:08 7212 3 Response: 215 UNIX Type L8
2011-05-27 17:30:08 7212 3 Command: FEAT
2011-05-27 17:30:08 7212 3 Response: 502 Command not supported.
2011-05-27 17:30:08 7212 3 Command: PBSZ 0
2011-05-27 17:30:08 7212 3 Response: 200 PBSZ OK.
2011-05-27 17:30:08 7212 3 Command: PROT P
2011-05-27 17:30:08 7212 3 Response: 200 PROT P successful. Data channel will be protected.
2011-05-27 17:30:08 7212 3 Status: Connected
2011-05-27 17:30:08 7212 3 Status: Retrieving directory listing...
2011-05-27 17:30:08 7212 3 Command: CWD /home/412931886/fromvan
2011-05-27 17:30:08 7212 3 Response: 550 /home/412931886/fromvan: no such directory.
2011-05-27 17:30:08 7212 3 Command: PWD
2011-05-27 17:30:08 7212 3 Response: 257 "/home/<USERNAME HERE>" is current directory.
2011-05-27 17:30:08 7212 3 Command: TYPE I
2011-05-27 17:30:08 7212 3 Response: 200 Type set to I.
2011-05-27 17:30:08 7212 3 Command: PASV
2011-05-27 17:30:08 7212 3 Response: 227 Entering Passive Mode (150,105,62,17,193,170)
2011-05-27 17:30:08 7212 3 Command: LIST
2011-05-27 17:30:08 7212 3 Response: 150 Opening BINARY mode data connection.
2011-05-27 17:30:08 7212 3 Response: 226 Transfer complete.
2011-05-27 17:30:09 7212 3 Status: Directory listing successful

Here I used the GUI to switch to the fromvan folder.
FileZilla is set to view the /home/412931886/fromvan when connecting.

2011-05-27 17:30:13 7212 3 Status: Retrieving directory listing...
2011-05-27 17:30:13 7212 3 Command: CWD fromvan
2011-05-27 17:30:14 7212 3 Response: 250 CWD command successful.
2011-05-27 17:30:14 7212 3 Command: PWD
2011-05-27 17:30:14 7212 3 Response: 257 "/home/<USERNAME HERE>/fromvan" is current directory.
2011-05-27 17:30:14 7212 3 Command: PASV
2011-05-27 17:30:14 7212 3 Response: 227 Entering Passive Mode (150,105,62,17,193,185)
2011-05-27 17:30:14 7212 3 Command: LIST
2011-05-27 17:30:21 7212 3 Response: 150 Opening BINARY mode data connection.
2011-05-27 17:30:21 7212 3 Response: 226 Transfer complete.
2011-05-27 17:30:21 7212 3 Status: Directory listing successful

WinSCP log:


. 2011-05-27 17:35:54.093 --------------------------------------------------------------------------
. 2011-05-27 17:35:54.095 WinSCP Version 4.3.3 (Build 1340) (OS 6.1.7601 Service Pack 1)
. 2011-05-27 17:35:54.096 Configuration: HKEY_CURRENT_USER\Software\Martin Prikryl\WinSCP 2\
. 2011-05-27 17:35:54.098 Login time: Friday, May 27, 2011 5:35:54 PM
. 2011-05-27 17:35:54.099 --------------------------------------------------------------------------
. 2011-05-27 17:35:54.101 Session name: <USERNAME HERE>@<SERVER URL HERE> (Modified stored session)
. 2011-05-27 17:35:54.102 Host name: <SERVER URL HERE> (Port: 21)
. 2011-05-27 17:35:54.104 User name: <USERNAME HERE> (Password: Yes, Key file: No)
. 2011-05-27 17:35:54.105 Tunnel: No
. 2011-05-27 17:35:54.107 Transfer Protocol: FTP
. 2011-05-27 17:35:54.109 Ping type: C, Ping interval: 30 sec; Timeout: 15 sec
. 2011-05-27 17:35:54.110 Proxy: none
. 2011-05-27 17:35:54.111 FTP: FTPS: Explicit TLS; Passive: Yes [Force IP: Yes]
. 2011-05-27 17:35:54.112 Local directory: C:\SpeEDI, Remote directory: /home/<USERNAME HERE>, Update: Yes, Cache: Yes
. 2011-05-27 17:35:54.114 Cache directory changes: Yes, Permanent: Yes
. 2011-05-27 17:35:54.115 DST mode: 1
. 2011-05-27 17:35:54.116 --------------------------------------------------------------------------
. 2011-05-27 17:35:54.146 Connecting to <SERVER URL HERE> ...
. 2011-05-27 17:35:54.176 Connected with <SERVER URL HERE>, negotiating SSL connection...
< 2011-05-27 17:35:54.221 220 SecureLink FTP Proxy (Version 3.0.2.365) ready.
> 2011-05-27 17:35:54.223 AUTH TLS
< 2011-05-27 17:35:54.272 234 AUTH TLS OK. TLS enabled and waiting for negotiation.
. 2011-05-27 17:35:54.886 SSL connection established. Waiting for welcome message...
> 2011-05-27 17:35:54.887 USER <USERNAME HERE>
< 2011-05-27 17:35:54.939 331 Password required for <USERNAME HERE>.
> 2011-05-27 17:35:54.940 PASS *******
< 2011-05-27 17:36:04.160 230 User <USERNAME HERE> logged in. Session ID 1641226407
> 2011-05-27 17:36:04.162 SYST
< 2011-05-27 17:36:04.214 215 UNIX Type L8
> 2011-05-27 17:36:04.215 FEAT
< 2011-05-27 17:36:04.265 502 Command not supported.
> 2011-05-27 17:36:04.267 PBSZ 0
< 2011-05-27 17:36:04.317 200 PBSZ OK.
> 2011-05-27 17:36:04.318 PROT P
< 2011-05-27 17:36:04.368 200 PROT P successful. Data channel will be protected.
. 2011-05-27 17:36:04.371 Connected
. 2011-05-27 17:36:04.373 --------------------------------------------------------------------------
. 2011-05-27 17:36:04.374 Using FTP protocol.
. 2011-05-27 17:36:04.375 Doing startup conversation with host.
> 2011-05-27 17:36:04.378 PWD
< 2011-05-27 17:36:04.430 257 "/home/<USERNAME HERE>" is current directory.
. 2011-05-27 17:36:04.434 Changing directory to "/home/<USERNAME HERE>".
> 2011-05-27 17:36:04.435 CWD /home/<USERNAME HERE>
< 2011-05-27 17:36:04.488 250 CWD command successful.
. 2011-05-27 17:36:04.489 Getting current directory name.
> 2011-05-27 17:36:04.490 PWD
< 2011-05-27 17:36:04.541 257 "/home/<USERNAME HERE>" is current directory.
. 2011-05-27 17:36:04.546 Retrieving directory listing...
> 2011-05-27 17:36:04.547 TYPE A
< 2011-05-27 17:36:04.612 200 Type set to A.
> 2011-05-27 17:36:04.613 PASV
< 2011-05-27 17:36:04.663 227 Entering Passive Mode (150,105,62,17,157,27)
> 2011-05-27 17:36:04.665 LIST -a
< 2011-05-27 17:36:04.715 150 Opening ASCII mode data connection.
< 2011-05-27 17:36:04.969 226 Transfer complete.
. 2011-05-27 17:36:05.048 Directory listing successful
. 2011-05-27 17:36:05.050 Startup conversation with host finished.
. 2011-05-27 17:36:13.072 Getting current directory name.
. 2011-05-27 17:36:13.074 Retrieving directory listing...
> 2011-05-27 17:36:13.075 TYPE A
< 2011-05-27 17:36:13.125 200 Type set to A.
> 2011-05-27 17:36:13.127 PASV
< 2011-05-27 17:36:13.177 227 Entering Passive Mode (150,105,62,17,157,33)
> 2011-05-27 17:36:13.178 LIST -a
< 2011-05-27 17:36:13.229 150 Opening ASCII mode data connection.
< 2011-05-27 17:36:13.480 226 Transfer complete.
. 2011-05-27 17:36:13.553 Directory listing successful

Reply with quote

Advertisement

earlw
Guest

martin wrote:

Try to disable support for listing hidden files
https://winscp.net/eng/docs/ui_login_ftp

That DID work. I did not see that email until now.
I changed the 'Support for listing of hidden files' to Off

PS: It works with both the original winscp.exe and the update you sent me.

Is there a way to persist that setting to the command-line?

The command line allows me to change folders, but get *.* does not transfer anything. 'ls' does not work either.

Reply with quote

EarlW
Guest

ftps with explicit encryption ( SSL and TLS )

Fantastic! The latest version 4.3.3 (Build 1344) has no problem with the hidden files in both the GUI and command line.

To access the Inovisworks.net server, you can use the following command:

open ftps://<username>:<password>@ftpssl.gateway.inovisworks.net:21 -passive -explicitssl -explicittls -certificate="xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx"

Reply with quote

Advertisement

martin
Site Admin
martin avatar

Re: ftps with explicit encryption ( SSL and TLS )

EarlW wrote:

Fantastic! The latest version 4.3.3 (Build 1344) has no problem with the hidden files in both the GUI and command line.
Just need to mention, that the version is not a public build. The fix will be included into the 4.3.4 release.

Reply with quote

Parky
Guest

I have the same problem

I'm running on version 4.3.9. I can see all the files in windows interface but not on the command prompt. could you help?

Reply with quote

martin
Site Admin
martin avatar

Re: I have the same problem

Parky wrote:

I'm running on version 4.3.9. I can see all the files in windows interface but not on the command prompt. could you help?
Can you please start a new thread and be more specific? Some screenshots may help too.

Reply with quote

Advertisement

saurabh bhardwaj
Guest

Using WinSCP to tranfer files to an FTP Server

Hi,
I want to transfer data files on a system to an ftp server with SSL. How can i achieve that using SSL Explicit Encryption Mode via command line.

Reply with quote

Giargiana
Guest

How can I obtain the certificate via commandline?

How can I obtain the certificate via commandline? given I have to set it up in the -certificate switch...

Reply with quote

martin
Site Admin
martin avatar

Re: How can I obtain the certificate via commandline?

Giargiana wrote:

How can I obtain the certificate via commandline? given I have to set it up in the -certificate switch...
Why via commandline? What are you trying to achieve?

Reply with quote

Advertisement

You can post new topics in this forum