• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 463
  • Last Modified:

FTP Security Concern

I had an issue with someone trying to connect to my FTP site and was having a problem
They sent me a log of the transaction that took place but Im not sure what it all means
Here is a sample of what the log read
{=========================================================
---- Resolving host address...
---- 1 address found: 208.265.42.19
notice: cannot open /export/home/sassys/.netrc: No such file or directory
---- dns cache hit
---- Connecting to abcftp.net (208.265.42.19) port 21
<--- 220 abc-sysaid.abc.ad X2 WS_FTP Server 7.0(92055573)
---> FEAT
<--- 503 Command FEAT not accepted during Connected
---> AUTH TLS
<--- 234 SSL enabled and waiting for negotiation
---> USER ABC

Certificate: ABC
 Issued by:ABC
WARNING: Certificate verification: Not trusted
WARNING: Certificate verification: The certificate's owner does not match hostname 'abcftp.net'
<--- 331 Enter password
---> PASS abc
<--- 230 User logged in
---> FEAT
<--- 211-Extensions supported
<---     SIZE
<---     XMD5
<---     XSHA1
<---     XSHA256
<---     XSHA512
<---     XQUOTA
<---     LANG EN, ES, FR, GE
<---     MDTM
<---     MLST size*;type*;perm*;create*;modify*;
<---     REST STREAM
<---     TVFS
<---     UTF8
<---     AUTH SSL;TLS-P;
<---     PBSZ
<---     PROT C;P;
<--- 211 end
---> PWD
<--- 257 "/" is current directory
---> PBSZ 0
<--- 200 PBSZ=0
---> LANG
<--- 200 Default languages set to EN
Should they be seeing all of this?
0
ahmad1467
Asked:
ahmad1467
  • 2
  • 2
  • 2
1 Solution
 
nsx106052Commented:
Sounds like the certificate is being denied.  If your certificate is from a trusted 3rd party you will need the user to accept the cert.  Your best bet is to make sure the cert is good and that other users can log in to the FTP server.  You might also want to check and make sure they using an FTP client that will work.  
0
 
ahmad1467Author Commented:
Other users can connect to the FTP with no problem is this because their trying to make a SSL  connection
0
 
nsx106052Commented:
Judging by the log you posted SSL cert doesn't seem be trusted by the user's computer.  I would start troubleshooting there.  
0
Hire Technology Freelancers with Gigs

Work with freelancers specializing in everything from database administration to programming, who have proven themselves as experts in their field. Hire the best, collaborate easily, pay securely, and get projects done right.

 
ParanormasticCryptographic EngineerCommented:
By the look of the error, I'm wondering if the @ didn't get in there, or you missed the . between abc and ftp.net...  

ftp://userid@site:port

(ftp://userid:password@site:port)
ftp://ABC:abc@abc.ftp.net:234
0
 
ahmad1467Author Commented:
One other thing once the make the connection
They get an IP redirect witch redirects to our internal IP address of the FTP Server.
Is that normal?
0
 
ParanormasticCryptographic EngineerCommented:
oh.  that redirect could be the name mismatch.
0

Featured Post

[Webinar] Kill tickets & tabs using PowerShell

Are you tired of cycling through the same browser tabs everyday to close the same repetitive tickets? In this webinar JumpCloud will show how you can leverage RESTful APIs to build your own PowerShell modules to kill tickets & tabs using the PowerShell command Invoke-RestMethod.

  • 2
  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now