Re: ftpd-ssl woes
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Content-Type: text/plain; charset=us-ascii
In message <[🔎] 3C76B021.904F5B3D@novator.com>, Moses Moore writes:
>Okay, let's try another tack.
>
>I've got the firewall port-forwarding ports 20,21 to the machine running
>ftpd-ssl, and I can connect (and I've packetsniffed to make sure it's
>encrypted) and get the MOTD. Any time I try to do something else, like
>'ls' or 'get', the session just hangs. I've tried using passive mode
>(the -p switch for the server doesn't force passive mode, even though
>it's mentioned in man 8 in.ftpd for just that), and the client says
>"Entering Passive Mode" and hangs just the same.
Try forcing ftp active mode a lot of clients nowadays default to passive
mode. That way the ftp server connects back to the client with the data, and
may allow the connection to get through the firewall. Of course, this will
break any users that are also behind a firewall, but it's very difficult to
run ftp between two machines that are protected by a firewall, unless one of
the machines' firewall is really smart WRT ftp connections.
- --
Ted Cabeen http://www.pobox.com/~secabeen ted@impulse.net
Check Website or Keyserver for PGP/GPG Key BA0349D2 secabeen@pobox.com
"I have taken all knowledge to be my province." -F. Bacon secabeen@cabeen.org
"Human kind cannot bear very much reality."-T.S.Eliot cabeen@netcom.com
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (OpenBSD)
Comment: Exmh version 2.5 07/13/2001
iD8DBQE8drH7oayJfLoDSdIRAuMdAJwI0iJWA93D6fmyfBqxUbLGfCt+aQCgs68O
otO50k2BbN/Ba+18c3rcr3U=
=xtJ5
-----END PGP SIGNATURE-----
Reply to: