LINUX.ORG.RU
ФорумGeneral

vsftp + ssl не могу понять


0

1

Вроде бы настроил на vsftpd ssl: 

ssl_enable=YES
allow_anon_ssl=NO
force_local_data_ssl=YES
force_local_logins_ssl=YES
ssl_tlsv1=YES
ssl_sslv2=NO
ssl_sslv3=NO
rsa_cert_file=/etc/vsftpd/vsftpd.pem
Но не могу понять работает ли это или нет, шифрованное у меня соединение или нет, а главное шифруются ли передаваемые файлы. При попытке подключится по gftp говорит:

530 Non-anonymous sessions must use encryption. Отключение от сервера

Как включить там поддержку ssl я не понял. lftp подключается без проблем, но понять есть ли шифрование или нет я так и не смог. Поставил какой-то плагин на файерфокс с поддержкой ftps, вроде логинется но директорию не листает: 

230 Login successful.
       FEAT
211-Features:
AUTH SSL
AUTH TLS
EPRT
EPSV
MDTM
PASV
PBSZ
PROT
REST STREAM
SIZE
TVFS
UTF8
211 End
       OPTS UTF8 ON
200 Always in UTF8 mode.
       PWD
257 "/srv/ftp/user1"
       TYPE A
200 Switching to ASCII mode.
       PROT P
200 PROT now Private.
       PASV
227 Entering Passive Mode (127,0,0,1,31,83).
       LIST
150 Here comes the directory listing.
421 Data timeout. Reconnect. Sorry.
: /srv/ftp/user1//srv/ftp/user1
Лог фтп: 
Fri Oct 21 10:59:17 2011 [pid 2] CONNECT: Client "127.0.0.1"
Fri Oct 21 10:59:17 2011 [pid 1] [user1] OK LOGIN: Client "127.0.0.1"
Fri Oct 21 10:59:25 2011 [pid 3] [user1] FAIL MKDIR: Client "127.0.0.1", "/srv/ftp/skip1/incoming"
Fri Oct 21 11:06:39 2011 [pid 2] CONNECT: Client "127.0.0.1"
Fri Oct 21 11:06:40 2011 [pid 1] [skip1] OK LOGIN: Client "127.0.0.1"
Fri Oct 21 11:08:22 2011 [pid 2] [user1] DEBUG: Client "127.0.0.1", "Connection terminated without SSL shutdown - buggy client?"
Fri Oct 21 11:08:47 2011 [pid 2] CONNECT: Client "127.0.0.1"
Fri Oct 21 11:08:48 2011 [pid 1] [user1] OK LOGIN: Client "127.0.0.1"
Fri Oct 21 11:09:47 2011 [pid 2] CONNECT: Client "127.0.0.1"
Fri Oct 21 11:09:47 2011 [pid 1] [anonymous] FAIL LOGIN: Client "127.0.0.1"
Fri Oct 21 11:09:48 2011 [pid 2] CONNECT: Client "127.0.0.1"
Fri Oct 21 11:09:59 2011 [pid 1] [user1] OK LOGIN: Client "127.0.0.1"
Fri Oct 21 11:13:16 2011 [pid 2] CONNECT: Client "127.0.0.1"
Fri Oct 21 11:13:16 2011 [pid 1] [anonymous] FAIL LOGIN: Client "127.0.0.1"
Fri Oct 21 11:13:17 2011 [pid 2] CONNECT: Client "127.0.0.1"
Fri Oct 21 11:13:32 2011 [pid 2] CONNECT: Client "127.0.0.1"
Fri Oct 21 11:13:32 2011 [pid 1] [anonymous] FAIL LOGIN: Client "127.0.0.1"
Fri Oct 21 11:13:33 2011 [pid 2] CONNECT: Client "127.0.0.1"
Fri Oct 21 11:13:41 2011 [pid 2] CONNECT: Client "127.0.0.1"
Fri Oct 21 11:13:41 2011 [pid 1] [anonymous] FAIL LOGIN: Client "127.0.0.1"
Fri Oct 21 11:13:42 2011 [pid 2] CONNECT: Client "127.0.0.1"
Fri Oct 21 11:14:45 2011 [pid 2] CONNECT: Client "127.0.0.1"
Fri Oct 21 11:14:45 2011 [pid 1] [user1] OK LOGIN: Client "127.0.0.1"
Fri Oct 21 11:14:58 2011 [pid 3] [user1] OK DELETE: Client "127.0.0.1", "/srv/ftp/user1/pub/freetype-2.1.9-i486-1ron.tgz"
Fri Oct 21 11:18:20 2011 [pid 2] CONNECT: Client "127.0.0.1"
Fri Oct 21 11:18:20 2011 [pid 1] [anonymous] FAIL LOGIN: Client "127.0.0.1"
Fri Oct 21 11:18:21 2011 [pid 2] CONNECT: Client "127.0.0.1"
Fri Oct 21 11:18:39 2011 [pid 2] CONNECT: Client "127.0.0.1"
Fri Oct 21 11:18:39 2011 [pid 1] [anonymous] FAIL LOGIN: Client "127.0.0.1"
Fri Oct 21 11:18:40 2011 [pid 2] CONNECT: Client "127.0.0.1"
Fri Oct 21 11:21:47 2011 [pid 2] CONNECT: Client "127.0.0.1"
Fri Oct 21 11:28:22 2011 [pid 2] CONNECT: Client "127.0.0.1"
Fri Oct 21 11:28:43 2011 [pid 2] CONNECT: Client "127.0.0.1"
Fri Oct 21 11:28:51 2011 [pid 2] CONNECT: Client "127.0.0.1"
Fri Oct 21 11:28:51 2011 [pid 1] [user1] OK LOGIN: Client "127.0.0.1"
Fri Oct 21 11:28:52 2011 [pid 2] [user1] DEBUG: Client "127.0.0.1", "No SSL session reuse on data channel."
Fri Oct 21 11:38:51 2011 [pid 2] CONNECT: Client "127.0.0.1"
Fri Oct 21 11:38:51 2011 [pid 1] [user1] OK LOGIN: Client "127.0.0.1"
Fri Oct 21 11:41:56 2011 [pid 2] CONNECT: Client "127.0.0.1"
Fri Oct 21 11:41:59 2011 [pid 2] CONNECT: Client "127.0.0.1"
Fri Oct 21 11:44:05 2011 [pid 2] CONNECT: Client "127.0.0.1"
Fri Oct 21 11:44:17 2011 [pid 2] CONNECT: Client "127.0.0.1"
Fri Oct 21 11:44:17 2011 [pid 1] [user2] OK LOGIN: Client "127.0.0.1"
Fri Oct 21 11:44:17 2011 [pid 2] [user2] DEBUG: Client "127.0.0.1", "No SSL session reuse on data channel."
Fri Oct 21 11:48:13 2011 [pid 2] CONNECT: Client "127.0.0.1"
Fri Oct 21 11:48:18 2011 [pid 2] CONNECT: Client "127.0.0.1"
Fri Oct 21 11:48:19 2011 [pid 2] CONNECT: Client "127.0.0.1"
Fri Oct 21 11:48:27 2011 [pid 2] CONNECT: Client "127.0.0.1"
Fri Oct 21 11:48:27 2011 [pid 1] [user1] OK LOGIN: Client "127.0.0.1"
Fri Oct 21 11:48:28 2011 [pid 2] [user1] DEBUG: Client "127.0.0.1", "No SSL session reuse on data channel."

★★★★★
PPPoE и воровство
sed в цикле.

Filezilla умеет вменяемые клиентские логи. Поставь, почитай, поделись.

thesis ★★★★★
()
Вы не можете добавлять комментарии в эту тему. Тема перемещена в архив.
PPPoE и воровство
General
sed в цикле.