ahmad1467
asked on
FTP Security Concern
I had an issue with someone trying to connect to my FTP site and was having a problem
They sent me a log of the transaction that took place but Im not sure what it all means
Here is a sample of what the log read
{========================= ========== ========== ========== ==
---- Resolving host address...
---- 1 address found: 208.265.42.19
notice: cannot open /export/home/sassys/.netrc : No such file or directory
---- dns cache hit
---- Connecting to abcftp.net (208.265.42.19) port 21
<--- 220 abc-sysaid.abc.ad X2 WS_FTP Server 7.0(92055573)
---> FEAT
<--- 503 Command FEAT not accepted during Connected
---> AUTH TLS
<--- 234 SSL enabled and waiting for negotiation
---> USER ABC
Certificate: ABC
Issued by:ABC
WARNING: Certificate verification: Not trusted
WARNING: Certificate verification: The certificate's owner does not match hostname 'abcftp.net'
<--- 331 Enter password
---> PASS abc
<--- 230 User logged in
---> FEAT
<--- 211-Extensions supported
<--- SIZE
<--- XMD5
<--- XSHA1
<--- XSHA256
<--- XSHA512
<--- XQUOTA
<--- LANG EN, ES, FR, GE
<--- MDTM
<--- MLST size*;type*;perm*;create*; modify*;
<--- REST STREAM
<--- TVFS
<--- UTF8
<--- AUTH SSL;TLS-P;
<--- PBSZ
<--- PROT C;P;
<--- 211 end
---> PWD
<--- 257 "/" is current directory
---> PBSZ 0
<--- 200 PBSZ=0
---> LANG
<--- 200 Default languages set to EN
Should they be seeing all of this?
They sent me a log of the transaction that took place but Im not sure what it all means
Here is a sample of what the log read
{=========================
---- Resolving host address...
---- 1 address found: 208.265.42.19
notice: cannot open /export/home/sassys/.netrc
---- dns cache hit
---- Connecting to abcftp.net (208.265.42.19) port 21
<--- 220 abc-sysaid.abc.ad X2 WS_FTP Server 7.0(92055573)
---> FEAT
<--- 503 Command FEAT not accepted during Connected
---> AUTH TLS
<--- 234 SSL enabled and waiting for negotiation
---> USER ABC
Certificate: ABC
Issued by:ABC
WARNING: Certificate verification: Not trusted
WARNING: Certificate verification: The certificate's owner does not match hostname 'abcftp.net'
<--- 331 Enter password
---> PASS abc
<--- 230 User logged in
---> FEAT
<--- 211-Extensions supported
<--- SIZE
<--- XMD5
<--- XSHA1
<--- XSHA256
<--- XSHA512
<--- XQUOTA
<--- LANG EN, ES, FR, GE
<--- MDTM
<--- MLST size*;type*;perm*;create*;
<--- REST STREAM
<--- TVFS
<--- UTF8
<--- AUTH SSL;TLS-P;
<--- PBSZ
<--- PROT C;P;
<--- 211 end
---> PWD
<--- 257 "/" is current directory
---> PBSZ 0
<--- 200 PBSZ=0
---> LANG
<--- 200 Default languages set to EN
Should they be seeing all of this?
Sounds like the certificate is being denied. If your certificate is from a trusted 3rd party you will need the user to accept the cert. Your best bet is to make sure the cert is good and that other users can log in to the FTP server. You might also want to check and make sure they using an FTP client that will work.
ASKER
Other users can connect to the FTP with no problem is this because their trying to make a SSL connection
Judging by the log you posted SSL cert doesn't seem be trusted by the user's computer. I would start troubleshooting there.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
One other thing once the make the connection
They get an IP redirect witch redirects to our internal IP address of the FTP Server.
Is that normal?
They get an IP redirect witch redirects to our internal IP address of the FTP Server.
Is that normal?
oh. that redirect could be the name mismatch.