Web Hosting Forum | Lunarpages


*
Welcome, Guest. Please login or register.
Did you miss your activation email?


Login with username, password and session length
February 09, 2012, 07:33:57 PM

Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: Secure FTP using TLS: can't list directory contents  (Read 2741 times)
GreenPenInc
Space Explorer
***
Offline Offline

Posts: 7


WWW
« on: February 16, 2008, 12:38:28 PM »
Hello,

I became concerned that regular FTP transmits passwords in plain text; thus, I looked for alternatives.  After searching the forums, I found that you don't support sftp and probably never will (on the basic plan, anyway).  However, you do seem to support FTP over explicit TLS.

I emerged filezilla (I'm on Gentoo) and set it up, following the instructions in the last post on the first page here:
http://www.lunarforums.com/lunarpages_webhosting_help/ftp_over_tlsexplicit_router_problem-t42121.0.html
Now, I'm able to connect to the server, but it hangs up waiting for the directory listing.

I imagine a lot of people would be very interested in having the convenience of FTP, along with the security of encrypted password transmission.  Could someone please help me out in setting it up?

Thanks!
Chip
Logged
_-(GPI)-_

"The illusion that you have the choice will make you choose the one, and be the other."
GreenPenInc
Space Explorer
***
Offline Offline

Posts: 7


WWW
« Reply #1 on: September 17, 2008, 05:37:03 PM »
A new version of filezilla came out, so I thought I'd check to see if the problem is still here.  Yep -- it is!  It's hanging on the LIST command.  Here's the output from the filezilla program when I try to connect:

Code:
Status: Resolving address of ftp.greenpeninc.com
Status: Connecting to 74.50.26.15:21...
Status: Connection established, waiting for welcome message...
Response: 220---------- Welcome to Pure-FTPd [TLS] ----------
Response: 220-You are user number 5 of 50 allowed.
Response: 220-Local time is now 17:34. Server port: 21.
Response: 220-IPv6 connections are also welcome on this server.
Response: 220 You will be disconnected after 15 minutes of inactivity.
Command: AUTH TLS
Response: 234 AUTH TLS OK.
Status: Initializing TLS...
Status: Verifying certificate...
Command: USER greenp6
Status: TLS/SSL connection established.
Response: 331 User greenp6 OK. Password required
Command: PASS **********
Response: 230-User greenp6 has group access to:  greenp6
Response: 230 OK. Current restricted directory is /
Command: SYST
Response: 215 UNIX Type: L8
Command: FEAT
Response: 211-Extensions supported:
Response: EPRT
Response: IDLE
Response: MDTM
Response: SIZE
Response: REST STREAM
Response: MLST type*;size*;sizd*;modify*;UNIX.mode*;UNIX.uid*;UNIX.gid*;unique*;
Response: MLSD
Response: ESTP
Response: PASV
Response: EPSV
Response: SPSV
Response: ESTA
Response: AUTH TLS
Response: PBSZ
Response: PROT
Response: 211 End.
Command: PBSZ 0
Response: 200 PBSZ=0
Command: PROT P
Response: 534 Fallback to [C]
Status: Connected
Status: Retrieving directory listing...
Command: PWD
Response: 257 "/" is your current location
Command: TYPE I
Response: 200 TYPE is now 8-bit binary
Command: PASV
Response: 227 Entering Passive Mode (74,50,26,15,175,51)
Command: LIST
Error: Connection timed out
Error: Failed to retrieve directory listing

Can someone please help me get FTP over explicit TLS?

Thanks,
Chip
Logged
_-(GPI)-_

"The illusion that you have the choice will make you choose the one, and be the other."
Mitch
Berserker Poster
*****
Offline Offline

Posts: 12838


WWW
« Reply #2 on: September 18, 2008, 05:19:09 AM »
Might drop an e-mail to support@lunarpages.com, so we can test it out and see if we can re-create the issue on our end and/or see if we can find a solution from that.  Thumbs Up
Logged
New to Web Site Hosting? Check Out the Lunarpages Blog Hosting Guide!

Follow us @lunarpages on Twitter!
Important Threads: Read This Before Posting! | Lunarforums Rules! | Mitch's Link of the Day!
Also, be sure to check out and subscribe to the Lunartics Blog and the Lunarpages Newsletter !

Need Web Hosting Help? Check out the Lunarpages Web Hosting Wiki. It has tons of tips, tutorials and resources!
tstmartin
Newbie
*
Offline Offline

Posts: 2
« Reply #3 on: September 26, 2008, 07:10:02 AM »
I have a suspiciously similar problem.

Everything was working fine for me before the hardware change to nila.
Clear text FTP works fine.

I had opened a trouble ticket, an admin eventually responded that he was able to use TLS ok, I looked at the log of his session. That led me to upgrade filezilla to 3.1. That let me in a couple of times and I assumed the issue resolved and went to bed.

However, the issue is actually NOT resolved - I can only intermittently get past the LIST command (though usually the LIST command returns nothing and times out). But if I do by chance get past the list command, when I try to change directory on the server, THAT one hangs.

I've since tried resetting my router, turning off my firewall, restarting my client computer .... all to no avail.

I'm going to go now and re-open my trouble ticket.... in the meantime,

If you got resolution, could you let me know what it was?

Thanks!
Logged
tstmartin
Newbie
*
Offline Offline

Posts: 2
« Reply #4 on: September 27, 2008, 04:05:39 PM »
Update:  Resolved!

After a few rounds of 'try this' and 'here's what happened' with support, the problem is resolved.

Apparently it was something to do with my ISP on my client end not being on a whitelist on the LP side.

My support ticket was handled well, and I could see it being escalated up the support hierarchy properly Smile

(I've done support myself, and I understand how this works; I'm pleased with how it was handled by LP).

It was resolved in a timely and professional fashion. I'm happy with how it was handled.
(and I said so in a feedback email too ).

It took a couple of days to get squared away, but it was not an emergency, and I had the feeling if it had been I could have called in voice and all ... but I'm a STRONG believer in not crying 'emergency' unless it really *is*   Smile

Anyway,  VERY happy to be able to get back to using FTP / TLS again  !!

BTW, for those using plain FTP  .. I was surprised to see how many hops it took to get from my client to my site - my traffic typically goes thru 18 or so connections.  Lots of places there for a clear-text account/password to be compromised.
Logged
msexter
Newbie
*
Offline Offline

Posts: 2
« Reply #5 on: July 07, 2009, 11:46:34 PM »
I am having this problem as well and have opened a trouble ticket with Lunarpages. My first entry has a link to this forum and I said that support had solved the problem for a customer before. I've had 4 different people enter comments in the trouble ticket but NONE of them have clicked on the link and read this forum. They absolutely REFUSE. I don't understand it.

The previous post from TSTMARTIN seems to indicate that there is a trouble ticket out there somewhere with the solution. Why won't anybody at Lunarpages look for it? It's killing me.

Anyway, if TSTMARTIN reads this post, please respond with more information on how the problem was solved. Or maybe you know the ticket number that has the solution. Any help would be appreciated. Lunarpages support has been completely useless on this subject.

Thanks...
Logged
katrina1
Guest
« Reply #6 on: July 08, 2009, 12:13:06 AM »
What domain is this for? Try it now.
Logged
msexter
Newbie
*
Offline Offline

Posts: 2
« Reply #7 on: July 20, 2009, 01:08:56 PM »
Kat,

Thank you; you resolved the problem. I've responded through the original problem ticket. Of the 5 sites I have hosted at LP, 3 were working. After another round with support the remaining 2 have been enabled, as well. However, I've asked for an explanation of the solution and haven't received one. Here is a snippet from my last entry...

"Again, I request a brief explanation of how this problem was solved. There appears to be a concerted effort to make this process difficult. As you see, I currently have 5 sites hosted at LP and am on the verge of migrating a 6th. However, securing my sites against hacks is of primary importance to me. If LP does not provide adequate support on this issue, I will have to reconsider not only opening new accounts but moving my existing ones."

Getting my site hacked was a very unpleasant experience. Finding out that it was most likely executed with stolen FTP credentials and that my hosting service doesn't support secure FTP made it even worse. Finally, having a very difficult time securing an acceptable solution, even though the problem is known and has been resolved by support in the past, was very frustrating.

- Mike
Logged
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to: