ftps with explicit encryption ( SSL and TLS )

Using WinSCP v 4.3.2 and Windows 7 32-bit.

I can login, but cannot view files.
Filezilla works, but WinSCP does not. GUI and script and manual do not work.

I am using:
open ftps://username:password@ftpssl.gateway.servername.net:21 -passive -explicitssl -explicittls -certificate="XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX"

Are both SSL and TLS supported? The GUI pull-down do not allow both.

Log does not show any errors. It says 'Directory listing successful', but nothing actually gets listed.

Can you post a log file both from WinSCP and Filezilla?

FileZilla log:

2011-05-27 17:30:07 7212 3 Status: Resolving address of ftpssl.gateway.inovisworks.net
2011-05-27 17:30:07 7212 3 Status: Connecting to <IP ADDRESS HERE>...
2011-05-27 17:30:07 7212 3 Status: Connection established, waiting for welcome message...
2011-05-27 17:30:07 7212 3 Response: 220 SecureLink FTP Proxy (Version 3.0.2.365) ready.
2011-05-27 17:30:07 7212 3 Command: AUTH TLS
2011-05-27 17:30:07 7212 3 Response: 234 AUTH TLS OK. TLS enabled and waiting for negotiation.
2011-05-27 17:30:07 7212 3 Status: Initializing TLS...
2011-05-27 17:30:07 7212 3 Status: Verifying certificate...
2011-05-27 17:30:07 7212 3 Command: USER <USERNAME HERE>
2011-05-27 17:30:07 7212 3 Status: TLS/SSL connection established.
2011-05-27 17:30:07 7212 3 Response: 331 Password required for <USERNAME HERE>.
2011-05-27 17:30:07 7212 3 Command: PASS *******
2011-05-27 17:30:08 7212 3 Response: 230 User <USERNAME HERE> logged in. Session ID 1641217142
2011-05-27 17:30:08 7212 3 Command: SYST
2011-05-27 17:30:08 7212 3 Response: 215 UNIX Type L8
2011-05-27 17:30:08 7212 3 Command: FEAT
2011-05-27 17:30:08 7212 3 Response: 502 Command not supported.
2011-05-27 17:30:08 7212 3 Command: PBSZ 0
2011-05-27 17:30:08 7212 3 Response: 200 PBSZ OK.
2011-05-27 17:30:08 7212 3 Command: PROT P
2011-05-27 17:30:08 7212 3 Response: 200 PROT P successful. Data channel will be protected.
2011-05-27 17:30:08 7212 3 Status: Connected
2011-05-27 17:30:08 7212 3 Status: Retrieving directory listing...
2011-05-27 17:30:08 7212 3 Command: CWD /home/412931886/fromvan
2011-05-27 17:30:08 7212 3 Response: 550 /home/412931886/fromvan: no such directory.
2011-05-27 17:30:08 7212 3 Command: PWD
2011-05-27 17:30:08 7212 3 Response: 257 "/home/<USERNAME HERE>" is current directory.
2011-05-27 17:30:08 7212 3 Command: TYPE I
2011-05-27 17:30:08 7212 3 Response: 200 Type set to I.
2011-05-27 17:30:08 7212 3 Command: PASV
2011-05-27 17:30:08 7212 3 Response: 227 Entering Passive Mode (150,105,62,17,193,170)
2011-05-27 17:30:08 7212 3 Command: LIST
2011-05-27 17:30:08 7212 3 Response: 150 Opening BINARY mode data connection.
2011-05-27 17:30:08 7212 3 Response: 226 Transfer complete.
2011-05-27 17:30:09 7212 3 Status: Directory listing successful

Here I used the GUI to switch to the fromvan folder.
FileZilla is set to view the /home/412931886/fromvan when connecting.

2011-05-27 17:30:13 7212 3 Status: Retrieving directory listing...
2011-05-27 17:30:13 7212 3 Command: CWD fromvan
2011-05-27 17:30:14 7212 3 Response: 250 CWD command successful.
2011-05-27 17:30:14 7212 3 Command: PWD
2011-05-27 17:30:14 7212 3 Response: 257 "/home/<USERNAME HERE>/fromvan" is current directory.
2011-05-27 17:30:14 7212 3 Command: PASV
2011-05-27 17:30:14 7212 3 Response: 227 Entering Passive Mode (150,105,62,17,193,185)
2011-05-27 17:30:14 7212 3 Command: LIST
2011-05-27 17:30:21 7212 3 Response: 150 Opening BINARY mode data connection.
2011-05-27 17:30:21 7212 3 Response: 226 Transfer complete.
2011-05-27 17:30:21 7212 3 Status: Directory listing successful

WinSCP log:


. 2011-05-27 17:35:54.093 --------------------------------------------------------------------------
. 2011-05-27 17:35:54.095 WinSCP Version 4.3.3 (Build 1340) (OS 6.1.7601 Service Pack 1)
. 2011-05-27 17:35:54.096 Configuration: HKEY_CURRENT_USER\Software\Martin Prikryl\WinSCP 2\
. 2011-05-27 17:35:54.098 Login time: Friday, May 27, 2011 5:35:54 PM
. 2011-05-27 17:35:54.099 --------------------------------------------------------------------------
. 2011-05-27 17:35:54.101 Session name: <USERNAME HERE>@<SERVER URL HERE> (Modified stored session)
. 2011-05-27 17:35:54.102 Host name: <SERVER URL HERE> (Port: 21)
. 2011-05-27 17:35:54.104 User name: <USERNAME HERE> (Password: Yes, Key file: No)
. 2011-05-27 17:35:54.105 Tunnel: No
. 2011-05-27 17:35:54.107 Transfer Protocol: FTP
. 2011-05-27 17:35:54.109 Ping type: C, Ping interval: 30 sec; Timeout: 15 sec
. 2011-05-27 17:35:54.110 Proxy: none
. 2011-05-27 17:35:54.111 FTP: FTPS: Explicit TLS; Passive: Yes [Force IP: Yes]
. 2011-05-27 17:35:54.112 Local directory: C:\SpeEDI, Remote directory: /home/<USERNAME HERE>, Update: Yes, Cache: Yes
. 2011-05-27 17:35:54.114 Cache directory changes: Yes, Permanent: Yes
. 2011-05-27 17:35:54.115 DST mode: 1
. 2011-05-27 17:35:54.116 --------------------------------------------------------------------------
. 2011-05-27 17:35:54.146 Connecting to <SERVER URL HERE> ...
. 2011-05-27 17:35:54.176 Connected with <SERVER URL HERE>, negotiating SSL connection...
< 2011-05-27 17:35:54.221 220 SecureLink FTP Proxy (Version 3.0.2.365) ready.
> 2011-05-27 17:35:54.223 AUTH TLS
< 2011-05-27 17:35:54.272 234 AUTH TLS OK. TLS enabled and waiting for negotiation.
. 2011-05-27 17:35:54.886 SSL connection established. Waiting for welcome message...
> 2011-05-27 17:35:54.887 USER <USERNAME HERE>
< 2011-05-27 17:35:54.939 331 Password required for <USERNAME HERE>.
> 2011-05-27 17:35:54.940 PASS *******
< 2011-05-27 17:36:04.160 230 User <USERNAME HERE> logged in. Session ID 1641226407
> 2011-05-27 17:36:04.162 SYST
< 2011-05-27 17:36:04.214 215 UNIX Type L8
> 2011-05-27 17:36:04.215 FEAT
< 2011-05-27 17:36:04.265 502 Command not supported.
> 2011-05-27 17:36:04.267 PBSZ 0
< 2011-05-27 17:36:04.317 200 PBSZ OK.
> 2011-05-27 17:36:04.318 PROT P
< 2011-05-27 17:36:04.368 200 PROT P successful. Data channel will be protected.
. 2011-05-27 17:36:04.371 Connected
. 2011-05-27 17:36:04.373 --------------------------------------------------------------------------
. 2011-05-27 17:36:04.374 Using FTP protocol.
. 2011-05-27 17:36:04.375 Doing startup conversation with host.
> 2011-05-27 17:36:04.378 PWD
< 2011-05-27 17:36:04.430 257 "/home/<USERNAME HERE>" is current directory.
. 2011-05-27 17:36:04.434 Changing directory to "/home/<USERNAME HERE>".
> 2011-05-27 17:36:04.435 CWD /home/<USERNAME HERE>
< 2011-05-27 17:36:04.488 250 CWD command successful.
. 2011-05-27 17:36:04.489 Getting current directory name.
> 2011-05-27 17:36:04.490 PWD
< 2011-05-27 17:36:04.541 257 "/home/<USERNAME HERE>" is current directory.
. 2011-05-27 17:36:04.546 Retrieving directory listing...
> 2011-05-27 17:36:04.547 TYPE A
< 2011-05-27 17:36:04.612 200 Type set to A.
> 2011-05-27 17:36:04.613 PASV
< 2011-05-27 17:36:04.663 227 Entering Passive Mode (150,105,62,17,157,27)
> 2011-05-27 17:36:04.665 LIST -a
< 2011-05-27 17:36:04.715 150 Opening ASCII mode data connection.
< 2011-05-27 17:36:04.969 226 Transfer complete.
. 2011-05-27 17:36:05.048 Directory listing successful
. 2011-05-27 17:36:05.050 Startup conversation with host finished.
. 2011-05-27 17:36:13.072 Getting current directory name.
. 2011-05-27 17:36:13.074 Retrieving directory listing...
> 2011-05-27 17:36:13.075 TYPE A
< 2011-05-27 17:36:13.125 200 Type set to A.
> 2011-05-27 17:36:13.127 PASV
< 2011-05-27 17:36:13.177 227 Entering Passive Mode (150,105,62,17,157,33)
> 2011-05-27 17:36:13.178 LIST -a
< 2011-05-27 17:36:13.229 150 Opening ASCII mode data connection.
< 2011-05-27 17:36:13.480 226 Transfer complete.
. 2011-05-27 17:36:13.553 Directory listing successful

Try to disable support for listing hidden files
https://winscp.net/eng/docs/ui_login_ftp

I have sent you an email.

martin wrote:

I have sent you an email.

Yes, thanks. I sent you a reply ;-)

martin wrote:

Try to disable support for listing hidden files
https://winscp.net/eng/docs/ui_login_ftp

That DID work. I did not see that email until now.
I changed the 'Support for listing of hidden files' to Off

PS: It works with both the original winscp.exe and the update you sent me.

Is there a way to persist that setting to the command-line?

The command line allows me to change folders, but get *.* does not transfer anything. 'ls' does not work either.

earlw wrote:

Is there a way to persist that setting to the command-line?

https://winscp.net/eng/docs/faq_script_ini

Fantastic! The latest version 4.3.3 (Build 1344) has no problem with the hidden files in both the GUI and command line.

To access the Inovisworks.net server, you can use the following command:

open ftps://<username>:<password>@ftpssl.gateway.inovisworks.net:21 -passive -explicitssl -explicittls -certificate="xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx"

EarlW wrote:

Fantastic! The latest version 4.3.3 (Build 1344) has no problem with the hidden files in both the GUI and command line.

Just need to mention, that the version is not a public build. The fix will be included into the 4.3.4 release.

This issue has been added to tracker.

I'm running on version 4.3.9. I can see all the files in windows interface but not on the command prompt. could you help?

Parky wrote:

I'm running on version 4.3.9. I can see all the files in windows interface but not on the command prompt. could you help?

Can you please start a new thread and be more specific? Some screenshots may help too.

Hi,
I want to transfer data files on a system to an ftp server with SSL. How can i achieve that using SSL Explicit Encryption Mode via command line.

saurabh bhardwaj wrote:

Hi,
I want to transfer data files on a system to an ftp server with SSL. How can i achieve that using SSL Explicit Encryption Mode via command line.

Use -explicittls switch of open command:
https://winscp.net/eng/docs/scriptcommand_open

How can I obtain the certificate via commandline? given I have to set it up in the -certificate switch...

Giargiana wrote:

How can I obtain the certificate via commandline? given I have to set it up in the -certificate switch...

Why via commandline? What are you trying to achieve?