package: netkit-ftp-ssl Version: 0.17.23+0.2-1 When connecting to a secure ftp server, closing the connection, then opening a new connection to either the same, or a different server, the client fails. It reads the first 5 bytes of the control connection (which will be the 220 message) and fails with an SSL error. It should not be expecting a secure channel at this point as it has not authorised with the server.
For example: $ /usr/bin/ftp-ssl -z secure -z cert=certs/usf.tcpdev.user01.password.cert -z key=certs/usf.tcpdev.user01.key -n -d -z verbose imsgdev1.edf.gxs.com 10021 Connected to imsgdev1.edf.gxs.com.220 imsgdev1 IE-FTP server (v5r0m0.i) ready on system USF.ftp: setsockopt: Bad file descriptor---> AUTH SSL234 AUTH command accepted - proceed with Negotiation.SSL_connect:UNKWN before/connect initializationSSL_connect:23WCHA SSLv2/v3 write client hello ASSL_connect:3RSH_A SSLv3 read server hello ASSL_connect:3RSC_A SSLv3 read server certificate ASSL_connect:3RCR_A SSLv3 read server certificate request ASSL_connect:3RSD_A SSLv3 read server done ASSL_connect:3WCC_A SSLv3 write client certificate ASSL_connect:3WCKEA SSLv3 write client key exchange ASSL_connect:3WCV_A SSLv3 write certificate verify ASSL_connect:3WCCSA SSLv3 write change cipher spec ASSL_connect:3WFINA SSLv3 write finished ASSL_connect:3FLUSH SSLv3 flush dataSSL_connect:3RFINA SSLv3 read finished A[SSL Cipher AES256-SHA]---> SYST502 Command not supported.ftp> user tcpdev.user01---> USER tcpdev.user01331 Enter Password.Password: ---> PASS XXXX230 Ready.---> SYST502 Command not supported.ftp> close---> QUIT221 Information Exchange session traced and completed. ID is 10519.ftp> open imsgdev1.edf.gxs.com 10021Connected to imsgdev1.edf.gxs.com. read from 0x84c9570 (5 bytes => 5 (5)) 0000 - 32 32 30 20 69 220 i write to 0x84c9570 (37 bytes => 37 (25)) 0000 - 15 03 01 00 20 6e 64 a6-16 31 6f 05 78 66 31 91 .... nd..1o.xf1. 0010 - ea a5 6b 16 8a 46 08 97-65 65 83 b6 bf 9c 4c 36 ..k..F..ee....L6 0020 - fc 83 12 8f a4 ..... ssl_getc: SSL_read failed -1 = 0421 Service not available, remote server has closed connectionftp> Tested on Linux 2.6.32-5-686 #1 SMP Mon Oct 3 04:15:24 UTC 2011 i686 GNU/Linux -- It's always best to be offended by things you haven't read. That way you keep your mind uncluttered by things that might change it. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
