Re: FTP oddness, over SSH session.
On 13 Apr 2012 at 23:51, Frank Staals wrote: John McDonnell gorgar...@ymail.com writes: All in all, creating an entry in Site Manager makes more sense if it's something you connect to from your own hardware. From someone else's machine, the quick connect is quite handy though. Don't forget to clear out the entry from the dropdown list then. Because I think FileZilla will remember your password as well. Worst ``feature'' ever if you ask me Regards, -- - Frank Indeed it does, and yes I do (clear that list out) but thanks for the reminder, and of course it's useful info for others too. Regards. Dave. -- Help for Hero's European Rally 2012 participant. Please help by visiting:- http://www.bmycharity.com/TeamSnowball For any/all donations, all 100% goes to H4H. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP oddness, over SSH session.
On 12 Apr 2012 at 11:28, Frank Bonnet wrote: Dave B d...@g8kbv.demon.co.uk writes: Hi, ordinarily perhaps yes, if I could only figure out how to set it up on the FreeBSD box. As always, the Manuals though no doubt correct and complete as a reference, are no good to people who don't already know How To do it. There is not much to set up. Just make sure you have sshd running. You can then just sftp (or any other client that supports sftp) to connect to port 22, or whatever port sshd is listening on. Regards, -- - Frank why not ftp over TLS ? like proftpd or pure-ftpd can do ? Hi. Because as yet, I have not figured out how to get ProFTP or PureFTP installed and WORKING without bricking the machine. There is no step by step how to (that I've yet found) with also guidance as to how to work arround the inevitable issues that occur. The man pages are just command references, not an instruction book on how to use them. Sorry. Hence, I'm using the native OS's inbuilt FTP facility. Even that took me 3 days to get going in the first instance. (file Access rights issues and poor, even if correct, documentation.) Regards. Dave Baxter. -- Help for Hero's European Rally 2012 participant. Please help by visiting:- http://www.bmycharity.com/TeamSnowball For any/all donations, all 100% goes to H4H. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP oddness, over SSH session.
On 12 Apr 2012 at 9:32, Frank Staals wrote: Dave B d...@g8kbv.demon.co.uk writes: Hi, ordinarily perhaps yes, if I could only figure out how to set it up on the FreeBSD box. As always, the Manuals though no doubt correct and complete as a reference, are no good to people who don't already know How To do it. There is not much to set up. Just make sure you have sshd running. You can then just sftp (or any other client that supports sftp) to connect to port 22, or whatever port sshd is listening on. Regards, -- - Frank Hi Frank. Thanks for that suggestion. It works well! Issue resolved for now :-) FYI, you have to create an entry in FileZilla's Site Manager, for it to invoke SFTP, the Quickconnect feature just uses plain vanilla FTP. Best Regards. Dave Baxter. -- Help for Hero's European Rally 2012 participant. Please help by visiting:- http://www.bmycharity.com/TeamSnowball For any/all donations, all 100% goes to H4H. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP oddness, over SSH session.
On 12 Apr 2012 at 12:40, Da Rock wrote: On 04/11/12 21:51, Dave B wrote: FreeBSD FBSD.67MK181QZ 8.0-RELEASE FreeBSD 8.0-RELEASE #0: Wed Apr 14 22:55:09 BST 2010 root@FBSD.67MK181QZ:/usr/obj/usr/src/sys/PPSGENERIC i386 Hi. I have a small FreeBSD 8.0 system (above, yes I know, not current, but it works.) That is mainly used for timekeeping with an attached PPS equipped GPS. No problems with that. It also has a small web server (Hiawatha) FTP server and SSH portal, for my own use. The FTP server is the built-in OS based ftpd implementation, and works well for all that I need. Anyway... I found a while ago, that I can tunnel connections into my home LAN via a SSH session to my FreeBSD box, from outside the LAN using PuTTY (on Windows XP) from wherever I am. It's been a useful dodge for me to do that so as to VNC to other boxes that are there. The needed SSH working port, is not the usual suspect, it's way up high, well away from script kiddies etc. I just found however, that though I can reliably send a file to the FTP server and it get's saved just fine, that's not true when connecting this way using a SSH tunnel. Over the SSH session, (using Passive Mode, with all needed ports forwarded, plus the FTP daemon's data port usage restricted to the same range as those tunneled.) Though the FTP process appears to work OK, with no errors, the file sent to and deposited on the server ends up as name only, and zero bytes in length. Oddly, I can successfully create a new folder on the FTP server over the SSH session using the FTP client, and that works just fine. The FTP client I'm using, is the same FileZilla both times. (V3.1.0.1 I may go look for any updates, just in case.) Downloading works fine regardless of how I connect, it's just uploading that's screwey. I suspect (as usual) it's a rights issue, but even if I su - root after the initial SSH login, it changes nothing. I'd check the ports you are forwarding over ssh. Two ports are required for ftp and it sounds like one is blocking for some reason- the control channel seems to be working fine though :) As I suspect too, but as yet, I've not figured it out. I can as above download files just fine, so the data channel can be established for that, and I am using Passive Mode, so it *Should* be only my end (the client) that initiates a connection for the data channel. Also, two versions of FileZilla *Appear* to succeed uploading a file, no errors regarding being unable to setup a data channel, just that when you look on the FreeBSD box later, the file is zero bytes in size. Regards. Dave Baxter. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
RE: FTP oddness, over SSH session.
From: owner-freebsd-questi...@freebsd.org [mailto:owner-freebsd- questi...@freebsd.org] On Behalf Of Dave B FYI, you have to create an entry in FileZilla's Site Manager, for it to invoke SFTP, the Quickconnect feature just uses plain vanilla FTP. Best Regards. Dave Baxter. You can use the Quickconnect feature with SFTP. If you are running on standard port 22, you can simply put 22 in the port box. For non-standard ports, you can prepend sftp:// to the host name and it will connect via SFTP instead of FTP. Apologies to Dave as he'll be getting this twice as I somehow forgot to include questions@ when replying. Thought this might come in handy for others who want to SFTP into a box with FileZilla, so resending to the list this time. All in all, creating an entry in Site Manager makes more sense if it's something you connect to from your own hardware. From someone else's machine, the quick connect is quite handy though. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP oddness, over SSH session.
On 13 Apr 2012 at 9:21, John McDonnell wrote: From: owner-freebsd-questi...@freebsd.org [mailto:owner-freebsd- questi...@freebsd.org] On Behalf Of Dave B FYI, you have to create an entry in FileZilla's Site Manager, for it to invoke SFTP, the Quickconnect feature just uses plain vanilla FTP. Best Regards. Dave Baxter. You can use the Quickconnect feature with SFTP. If you are running on standard port 22, you can simply put 22 in the port box. For non-standard ports, you can prepend sftp:// to the host name and it will connect via SFTP instead of FTP. Cheers, I'll try that next time I'm on the outside of my home LAN, it seems to work from the inside, as it would of course... At present, there a suitably configured link in the site manager. Thanks again. Dave. -- Help for Hero's European Rally 2012 participant. Please help by visiting:- http://www.bmycharity.com/TeamSnowball For any/all donations, all 100% goes to H4H. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP oddness, over SSH session.
John McDonnell gorgar...@ymail.com writes: All in all, creating an entry in Site Manager makes more sense if it's something you connect to from your own hardware. From someone else's machine, the quick connect is quite handy though. Don't forget to clear out the entry from the dropdown list then. Because I think FileZilla will remember your password as well. Worst ``feature'' ever if you ask me Regards, -- - Frank ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP oddness, over SSH session.
On 11 Apr 2012 at 14:54, Mike Clarke wrote: On Wednesday 11 April 2012, Dave B wrote: I just found however, that though I can reliably send a file to the FTP server and it get's saved just fine, that's not true when connecting this way using a SSH tunnel. Would it not be simpler just to use sftp directly rather than tunnelling ftp through ssh? -- Mike Clarke Hi, ordinarily perhaps yes, if I could only figure out how to set it up on the FreeBSD box. As always, the Manuals though no doubt correct and complete as a reference, are no good to people who don't already know How To do it. Originally, the FTP was purely for other machines at home to periodicaly dump data for some pages of the small website it also hosts. There was (is) no need for SFTP for that, as all the machines are in the same room at home. Thanks for the reply. Dave B. -- Help for Hero's European Rally 2012 participant. Please help by visiting:- http://www.bmycharity.com/TeamSnowball For any/all donations, all 100% goes to H4H. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP oddness, over SSH session.
Dave B d...@g8kbv.demon.co.uk writes: Hi, ordinarily perhaps yes, if I could only figure out how to set it up on the FreeBSD box. As always, the Manuals though no doubt correct and complete as a reference, are no good to people who don't already know How To do it. There is not much to set up. Just make sure you have sshd running. You can then just sftp (or any other client that supports sftp) to connect to port 22, or whatever port sshd is listening on. Regards, -- - Frank ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP oddness, over SSH session.
why not ftp over TLS ? like proftpd or pure-ftpd can do ? Envoyé de mon iPhone. Le 12 avr. 2012 à 09:32, Frank Staals fr...@fstaals.net a écrit : Dave B d...@g8kbv.demon.co.uk writes: Hi, ordinarily perhaps yes, if I could only figure out how to set it up on the FreeBSD box. As always, the Manuals though no doubt correct and complete as a reference, are no good to people who don't already know How To do it. There is not much to set up. Just make sure you have sshd running. You can then just sftp (or any other client that supports sftp) to connect to port 22, or whatever port sshd is listening on. Regards, -- - Frank ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP oddness, over SSH session.
On 12/04/2012 10:28, Frank Bonnet wrote:
why not ftp over TLS ? like proftpd or pure-ftpd can do ?
Because it is pretty much impossible to firewall securely. Either you
don't encrypt the control channel or you have to give any firewalls
between you and your destination keys to be able to decrypt the traffic
(in which case you might just as well not bother encrypting it at all)
or you have to open up a whole load of ports to accept incoming traffic
('you' being typically the FTP server admin for PASV mode FTP;
otherwise, you'ld need to do similarly on the client for active mode
FTP.) FTP is fundamentally broken and simply encasing it in a layer of
encryption only exacerbates the fundamental flaws.
The FTP protocol is an archaic remnant of some mythical golden age of
the internet when you could generally trust anyone else with access to
the net[*]. Given what the past 40 years or so have shown us about the
realities of global networking, it is high time that it was obsoleted
and the world switched to some of the many better alternatives that have
since been developed.
* HTTP -- obviously works fine for download. It can support upload
too: there's a little-used PUT command, or you can use such things
as WEBDAV. Easy to run over TLS by using HTTPS.
* RSYNC -- has an anonymous mode which works fine for generic
downloads. For authenticated access defaults to ssh(1) for all
traffic.
* SFTP or SCP -- for those who are unwilling or unable to
contemplate using anything other than an FTP client, SFTP will
pose as one, while still properly securing all your traffic. SCP
is (IMHO) a nicer interface for general day-to-day copying stuff
between machines though.
Cheers,
Matthew
[*] Believe it or not, at one time it was generally accepted that mail
servers should be configured as open relays. This was so that if your
own mailserver was playing up, you could easily borrow a neighbours
server to send messages. Then spam was invented.
--
Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard
Flat 3
PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate
JID: matt...@infracaninophile.co.uk Kent, CT11 9PW
signature.asc
Description: OpenPGP digital signature
Re: FTP oddness, over SSH session.
On Wednesday 11 April 2012, Dave B wrote: I just found however, that though I can reliably send a file to the FTP server and it get's saved just fine, that's not true when connecting this way using a SSH tunnel. Would it not be simpler just to use sftp directly rather than tunnelling ftp through ssh? -- Mike Clarke ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: FTP oddness, over SSH session.
On 04/11/12 21:51, Dave B wrote: FreeBSD FBSD.67MK181QZ 8.0-RELEASE FreeBSD 8.0-RELEASE #0: Wed Apr 14 22:55:09 BST 2010 root@FBSD.67MK181QZ:/usr/obj/usr/src/sys/PPSGENERIC i386 Hi. I have a small FreeBSD 8.0 system (above, yes I know, not current, but it works.) That is mainly used for timekeeping with an attached PPS equipped GPS. No problems with that. It also has a small web server (Hiawatha) FTP server and SSH portal, for my own use. The FTP server is the built-in OS based ftpd implementation, and works well for all that I need. Anyway... I found a while ago, that I can tunnel connections into my home LAN via a SSH session to my FreeBSD box, from outside the LAN using PuTTY (on Windows XP) from wherever I am. It's been a useful dodge for me to do that so as to VNC to other boxes that are there. The needed SSH working port, is not the usual suspect, it's way up high, well away from script kiddies etc. I just found however, that though I can reliably send a file to the FTP server and it get's saved just fine, that's not true when connecting this way using a SSH tunnel. Over the SSH session, (using Passive Mode, with all needed ports forwarded, plus the FTP daemon's data port usage restricted to the same range as those tunneled.) Though the FTP process appears to work OK, with no errors, the file sent to and deposited on the server ends up as name only, and zero bytes in length. Oddly, I can successfully create a new folder on the FTP server over the SSH session using the FTP client, and that works just fine. The FTP client I'm using, is the same FileZilla both times. (V3.1.0.1 I may go look for any updates, just in case.) Downloading works fine regardless of how I connect, it's just uploading that's screwey. I suspect (as usual) it's a rights issue, but even if I su - root after the initial SSH login, it changes nothing. I'd check the ports you are forwarding over ssh. Two ports are required for ftp and it sounds like one is blocking for some reason- the control channel seems to be working fine though :) The FTP user is a different name from who I'm logged in as by SSH, is that the issue?But what confuses me, is that it works from this same PC, if it's on the home LAN, using the same FTP user credentials. I'm obviously lacking in my understanding of something, but what? I may not get to see any replies for a day or three, as I've got to head off across country for work later, and it's not yet known if tonight's hotel even has WiFi, or if there is decent mobile coverage where I'm going. (Out in the Wiltshire sticks. UK, and I'm stuck with Orange.) Thanks in advance. Dave B -- Help for Hero's European Rally 2012 participant. Please help by visiting:- http://www.bmycharity.com/TeamSnowball For any/all donations, all 100% goes to H4H. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
