cURL / Mailing Lists / curl-users / Single Mail

curl-users

FTPS help

From: Norbert Novotny <norbert.novotny_at_gmail.com>
Date: Mon, 8 Aug 2005 15:34:56 +0200

Hi Guys,
I am new to SSL problematics, but I have task to upload files from our
Unix server (behind FW) to the other FTPS enabled server windows based
also behind FW.
I have managet to get connected, exchanged certificates, open
datastream connection,
however in the moment when FTP STOR command is issued, all stops frozen.

As I understand, the missing bit is second SSL exchange for datastream
session. Can someone help here, what 'm doing wrong, or suggest a
config change? I have limited ability of changing remote server, but I
can suggest.

many thanks,
 Norbert

This is the verbose out put:
curl -E ./SSL/CL.pem:sslpwd --disable-epsv -T TEST.TXT
--ftp-ignore-pasv-ip -v -u ftp.box:mypwd --ftp-ssl
ftps://ftsbox.com/LPS/
* About to connect() to ftsbox.com port 990
* Trying 53.146.54.15... connected
* Connected to ftsbox.com (53.146.54.15) port 990
* successfully set certificate verify locations:
* CAfile: /root/local/share/curl/curl-ca-bundle.crt
  CApath: none
* SSLv2, Client hello (1):
SSLv3, TLS handshake, Server hello (2):
SSLv3, TLS handshake, CERT (11):
SSLv3, TLS handshake, Request CERT (13):
SSLv3, TLS handshake, Server finished (14):
SSLv3, TLS handshake, CERT (11):
SSLv3, TLS handshake, Client key exchange (16):
SSLv3, TLS handshake, CERT verify (15):
SSLv3, TLS change cipher, Client hello (1):
SSLv3, TLS handshake, Finished (20):
SSLv3, TLS change cipher, Client hello (1):
SSLv3, TLS handshake, Finished (20):
SSL connection using DES-CBC3-SHA
* Server certificate:
* subject: /C=CH/ST=Zurich/L=Zurich/O=Holding AG/OU=Terms of
use at www.verisign.com/rpa (c)00/CN=ftsbox.com
* start date: 2004-12-02 00:00:00 GMT
* expire date: 2005-12-02 23:59:59 GMT
* common name: ftsbox.com (matched)
* issuer: /O=VeriSign Trust Network/OU=VeriSign,
Inc./OU=VeriSign International Server CA - Class
3/OU=www.verisign.com/CPS Incorp.by Ref. LIABILITY LTD.(c)97 VeriSign
* SSL certificate verify ok.
< 220 Welcome to XFB Gateway FTP server
> USER ftp.box
< 331 Send password please
> PASS mypwd
< 230 User logged in, proceed
> PBSZ 0
< 503 Bad sequence of command
> PWD
< 257 "/CCOM" is current directory.
* Entry path is '/CCOM'
> CWD LPS
< 250 Requested file action okay, completed
> PASV
* Connect data stream passively
< 227 Entering passive mode (10,23,252,180,128,63).
* Trying 53.146.54.15... connected
* Connecting to ftsbox.com (53.146.54.15) port 32831
> TYPE I
< 200 Command okay
> STOR TEST.TXT
Received on 2005-08-08