Want to subscribe to topics you're interested in?
Become a Member

FTP problem after code updates?

Discussion in 'Other Centmin Mod Installed software' started by jellday, Feb 10, 2018.

  1. jellday

    jellday New Member

    29
    2
    3
    May 31, 2014
    Ratings:
    +3
    Local Time:
    9:51 PM
    1.4.6
    5.5
    The ftp is working properly after recently code updates if I remember right.

    The following is logs (real ip is replaced):

    FlashFXP 4.4.3 (build 2029)
    Support Forums FlashFXP - Secure FTP Client Software for Windows. Upload, Download, and Synchronize your files.
    Winsock 2.2 -- OpenSSL 1.0.1e 11 Feb 2013
    [R] Connecting to V-UK -> IP=1.1.1.1 PORT=21
    [R] Connected to V-UK
    [R] 220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------
    [R] 220-You are user number 2 of 25 allowed.
    [R] 220-Local time is now 10:52. Server port: 21.
    [R] 220-This is a private system - No anonymous login
    [R] 220-IPv6 connections are also welcome on this server.
    [R] 220 You will be disconnected after 15 minutes of inactivity.
    [R] AUTH SSL
    [R] 500 This security scheme is not implemented
    [R] AUTH TLS
    [R] 234 AUTH TLS OK.
    [R] Connected. Negotiating SSL/TLS session
    [R] SSLv3 negotiation successful...
    [R] SSLv3 encrypted session using cipher DHE-RSA-AES256-SHA (256 bits)
    [R] PBSZ 0
    [R] 200 PBSZ=0
    [R] USER dayf
    [R] 331 User dayf OK. Password required
    [R] PASS (hidden)
    [R] 230 OK. Current directory is /
    [R] SYST
    [R] 215 UNIX Type: L8
    [R] FEAT
    [R] 211-Extensions supported:
    [R] EPRT
    [R] IDLE
    [R] MDTM
    [R] SIZE
    [R] REST STREAM
    [R] MLST type*;size*;sizd*;modify*;UNIX.mode*;UNIX.uid*;UNIX.gid*;unique*;
    [R] MLSD
    [R] AUTH TLS
    [R] PBSZ
    [R] PROT
    [R] UTF8
    [R] ESTA
    [R] PASV
    [R] EPSV
    [R] SPSV
    [R] ESTP
    [R] 211 End.
    [R] OPTS UTF8 ON
    [R] 200 OK, UTF-8 enabled
    [R] PWD
    [R] 257 "/" is your current location
    [R] CWD public
    [R] 250 OK. Current directory is /public
    [R] PWD
    [R] 257 "/public" is your current location
    [R] PROT P
    [R] 200 Data protection level set to "private"
    [R] PASV
    [R] 227 Entering Passive Mode (1,1,1,1,11,194)
    [R] Opening data connection IP: 1.1.1.1 PORT: 3010
    [R] MLSD
    [R] Connected. Negotiating SSL/TLS session
    [R] 150 Accepted data connection
    [R] SSLv3 negotiation successful...
    [R] SSLv3 encrypted session using cipher DHE-RSA-AES256-SHA (256 bits)
    [R] Connection lost: V-UK (Duration: 5 minutes 34 seconds / Idle: 4 minutes 22 seconds)
    [R] Connecting to V-UK -> IP=1.1.1.1 PORT=21
    [R] Connected to V-UK
    [R] 220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------
    [R] 220-You are user number 1 of 25 allowed.
    [R] 220-Local time is now 10:57. Server port: 21.
    [R] 220-This is a private system - No anonymous login
    [R] 220-IPv6 connections are also welcome on this server.
    [R] 220 You will be disconnected after 15 minutes of inactivity.
    [R] AUTH SSL
    [R] 500 This security scheme is not implemented
    [R] AUTH TLS
    [R] 234 AUTH TLS OK.
    [R] Connected. Negotiating SSL/TLS session
    [R] SSLv3 negotiation successful...
    [R] SSLv3 encrypted session using cipher DHE-RSA-AES256-SHA (256 bits)
    [R] PBSZ 0
    [R] 200 PBSZ=0
    [R] USER dayf
    [R] 331 User dayf OK. Password required
    [R] PASS (hidden)
    [R] 230 OK. Current directory is /
    [R] SYST
    [R] 215 UNIX Type: L8
    [R] FEAT
    [R] 211-Extensions supported:
    [R] EPRT
    [R] IDLE
    [R] MDTM
    [R] SIZE
    [R] REST STREAM
    [R] MLST type*;size*;sizd*;modify*;UNIX.mode*;UNIX.uid*;UNIX.gid*;unique*;
    [R] MLSD
    [R] AUTH TLS
    [R] PBSZ
    [R] PROT
    [R] UTF8
    [R] ESTA
    [R] PASV
    [R] EPSV
    [R] SPSV
    [R] ESTP
    [R] 211 End.
    [R] OPTS UTF8 ON
    [R] 200 OK, UTF-8 enabled
    [R] PWD
    [R] 257 "/" is your current location
    [R] CWD /public
    [R] 250 OK. Current directory is /public
    [R] PWD
    [R] 257 "/public" is your current location
    [R] PASV mode failed, trying PORT mode.
    [R] PROT P
    [R] 200 Data protection level set to "private"
    [R] Listening on PORT: 59674, Waiting for connection.
    [R] PORT 192,168,1,13,233,26
    [R] 500 I won't open a connection to 192.168.1.13 (only to 219.147.95.162)
    [R] List Error

    The list is not correct and any upload attempt will not be successful.

    The SSH login is normal.
     
  2. eva2000

    eva2000 Administrator Staff Member

    32,251
    7,165
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +10,892
    Local Time:
    11:51 PM
    Nginx 1.13.x
    MariaDB 5.5
    might be related ?
     
  3. jellday

    jellday New Member

    29
    2
    3
    May 31, 2014
    Ratings:
    +3
    Local Time:
    9:51 PM
    1.4.6
    5.5
    Well, I don't know.

    I pasted the logs here:ftp - Pastebin.com

    I wonder if there is a way maybe to recreate the ftp without touching the existing files? Or duplicate a new ftp user with the same permission and then delete this error one?
     
  4. eva2000

    eva2000 Administrator Staff Member

    32,251
    7,165
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +10,892
    Local Time:
    11:51 PM
    Nginx 1.13.x
    MariaDB 5.5
    tried updating to FlashFXP 5.4.0 ? Are you using CentOS 7.4 ? when did you update from CentOS 7.3 to 7.4 ? I see your logs trying to connect via SSLv3 which i think was deprecated in CentOS 7.4
    Code (Text):
    [R] Connected. Negotiating SSL/TLS session
    [R] 150 Accepted data connection
    [R] SSLv3 negotiation successful...
    [R] SSLv3 encrypted session using cipher DHE-RSA-AES256-SHA (256 bits)
    
    [R] Connected. Negotiating SSL/TLS session
    [R] 150 Accepted data connection
    [R] Data Socket Error: Failed SSLv3 negotiation, disconnected
    


    tested with FlashFXP 5.4.0 on CentOS 7.4 based Centmin Mod
    Code (Text):
    [18:01:46] [R] MLSD
    [18:01:46] [R] TLSv1.2 negotiation successful...
    [18:01:46] [R] TLSv1.2 encrypted session using cipher ECDHE-RSA-AES128-GCM-SHA256 (128 bits)
    [18:01:46] [R] 150 Accepted data connection
    

    You may need to change order of ssl ciphers used in FlashFXP

    upload_2018-2-14_18-6-54.png
     
  5. jellday

    jellday New Member

    29
    2
    3
    May 31, 2014
    Ratings:
    +3
    Local Time:
    9:51 PM
    1.4.6
    5.5
    Hmmmm, the ftp is now working fine, and I didn't modify anything. Very strange, just like it went wrong without any reason.

    For your reference, the VPS's CentOS is 6.9Final.
     
  6. eva2000

    eva2000 Administrator Staff Member

    32,251
    7,165
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +10,892
    Local Time:
    11:51 PM
    Nginx 1.13.x
    MariaDB 5.5
    Are logging in from multiple local pc/lan devices ? If so, see FAQ items 40 & 41 for details and clues.