Hi,

I'm attempting to use Curl to connect to WS_FTP 4.0.2 using SSL. WS_FTP
has been configured to force the client to authenticate itself using a
certificate.

It seems that I can connect to the server successfully by providing my
username/password and client certificate, but whenever an attempt is made
to use the data channel, something is going wrong with the SSL side of
things. Below is the exact Curl command that I am using along with the
output from it: -

curl ftp://eai-test:testftp@10.240.143.56:2001 --ftp-ssl -E
eaitst_signed.crt:1welcome -v -T README --key eaitst.key --ftp-pasv -k
--disable-epsv

* About to connect() to 10.240.143.56 port 2001
* Connected to 10.240.143.56 (10.240.143.56) port 2001
< 220-toffee.txu.com.au X2 WS_FTP Server 4.0.2.EVAL (2004623636)
< 220-Mon Apr 19 13:28:23 2004
< 220-24 days remaining on evaluation.
< 220 toffee.txu.com.au X2 WS_FTP Server 4.0.2.EVAL (2004623636)
> AUTH SSL
< 234 SSL enabled and waiting for negotiation
* SSL connection using EXP-EDH-RSA-DES-CBC-SHA
* Server certificate:
* subject:
/C=US/ST=MA/O=Ipswitch/L=Lexington/OU=R&D/emailAddress=support_at_ipswitch.com/CN=Ipswitch
* start date: 2001-10-19 04:00:00 GMT
* expire date: 2007-10-19 04:00:00 GMT
* common name: Ipswitch (does not match '10.240.143.56')
* issuer:
/C=US/ST=MA/O=Ipswitch/L=Lexington/OU=R&D/emailAddress=support_at_ipswitch.com/CN=Ipswitch
* SSL certificate verify result: 18, continuing anyway.
> USER eai-test
< 331 Password required
> PASS testftp
< 230 user logged in
* We have successfully logged in
> PBSZ 0
< 200 PBSZ=0
> PROT P
< 200 PRIVATE data channel protection level set
> PWD
< 257 "/users/eai-test" is current directory
* Entry path is '/users/eai-test'
> PASV
< 227 Entering Passive Mode (10,240,143,56,18,37).
* About to connect() to 10.240.143.56 port 4645
* Connecting to toffee.txu.com.au (10.240.143.56) port 4645
* Connected the data stream with PASV!
> TYPE A
< 200 Type set to ASCII.
> LIST
< 150 Opening ASCII data connection for directory listing
* Doing the SSL/TLS handshake on the data stream
* SSL re-using session ID
* SSL: error:00000000:lib(0):func(0):reason(0)
curl: (35) SSL: error:00000000:lib(0):func(0):reason(0)
> QUIT
< 425 Can't open data connection.
* Closing connection #0

Any ideas on what is happening would be greatly appreciated.

Regards,

Grant Sheppard

-----------------------
TXU Australia
New Capabilities Analyst
Enabling Systems
Level 38, 385 Bourke St
Melbourne, 3000
Ph: +61 3 8628 1820
Mob: +61 417 383 351

TXU - we're excited by gas and electricity.

CAUTION

This email and any files transmitted with it may be confidential and are intended solely for the use of the individual or entity to whom they are addressed. Any confidentiality is not waived or lost because this email has been sent to you by mistake. This email may contain personal information of individuals, and be subject to Commonwealth and/or State privacy laws in Australia. This email is also subject to copyright. If you are not the intended recipient, you must not read, print, store, copy, forward or use this email for any reason, in accordance with privacy and copyright laws. If you have received this email in error, please notify the sender by return email, and delete this email from your inbox.
Received on 2004-04-19