vsftpd and filezilla
I'm running Ubuntu Server 10.04 with VSFTPD. Filezilla used to have no problems connecting. It started doing this sometime in the last several months and went by unnoticed till just now. I also tried filezilla on my wife's mac and that resulted in the same error. Server log for vsftpd ends with: OK LOGIN: Client "xx.xx.xx.xx". Filezilla log below.
Relevant info: Client filezilla 3.3.5.1-1ubuntu1 Server libcurl3-gnutls 7.19.7-1ubuntu1.1 vsftpd 2.2.2-3ubuntu6.2 12:50:46 Status: Connecting to host.mysite.com 12:50:46 Status: Connection established, waiting for welcome message... 12:50:46 Trace: CFtpControlSocket::OnReceive() 12:50:46 Response: 220 (vsFTPd 2.2.2) 12:50:46 Trace: CFtpControlSocket::SendNextCommand() 12:50:46 Command: AUTH TLS 12:50:46 Trace: CFtpControlSocket::OnReceive() 12:50:46 Response: 234 Proceed with negotiation. 12:50:46 Status: Initializing TLS... 12:50:46 Trace: CTlsSocket::Handshake() 12:50:46 Trace: CTlsSocket::ContinueHandshake() 12:50:46 Trace: CTlsSocket::OnSend() 12:50:47 Trace: CTlsSocket::OnRead() 12:50:47 Trace: CTlsSocket::ContinueHandshake() 12:50:47 Trace: CTlsSocket::OnRead() 12:50:47 Trace: CTlsSocket::ContinueHandshake() 12:50:47 Trace: Handshake successful 12:50:47 Trace: Cipher: 3DES-CBC, MAC: SHA1 12:50:47 Status: Verifying certificate... 12:50:47 Trace: CFtpControlSocket::SendNextCommand() 12:50:47 Command: USER newguy 12:50:47 Status: TLS/SSL connection established. 12:50:47 Trace: CTlsSocket::OnRead() 12:50:47 Trace: CFtpControlSocket::OnReceive() 12:50:47 Response: 331 Please specify the password. 12:50:47 Trace: CFtpControlSocket::SendNextCommand() 12:50:47 Command: PASS ******** 12:50:47 Trace: CTlsSocket::OnRead() 12:50:47 Trace: CTlsSocket::Failure(-8, 103) 12:50:47 Error: GnuTLS error -8: A record packet with illegal version was received. 12:50:47 Trace: CRealControlSocket::OnClose(103) 12:50:47 Trace: CControlSocket::DoClose(64) 12:50:47 Trace: CFtpControlSocket::ResetOperation(66) 12:50:47 Trace: CControlSocket::ResetOperation(66) 12:50:47 Error: Could not connect to server 12:50:47 Trace: CFileZillaEnginePrivate::ResetOperation(66) 12:50:47 Status: Waiting to retry... 12:50:52 Trace: CControlSocket::DoClose(64) 12:50:52 Trace: CControlSocket::DoClose(64) 12:50:52 Status: Connecting to host.vividiridium.com through proxy 12:50:52 Status: Connecting to 127.0.0.1:1080... 12:50:52 Status: Connection with proxy established, performing handshake... 12:50:52 Status: Connection established, waiting for welcome message... 12:50:52 Trace: CFtpControlSocket::OnReceive() 12:50:52 Response: 220 (vsFTPd 2.2.2) 12:50:52 Trace: CFtpControlSocket::SendNextCommand() 12:50:52 Command: AUTH TLS 12:50:53 Trace: CFtpControlSocket::OnReceive() 12:50:53 Response: 234 Proceed with negotiation. 12:50:53 Status: Initializing TLS... 12:50:53 Trace: CTlsSocket::Handshake() 12:50:53 Trace: CTlsSocket::ContinueHandshake() 12:50:53 Trace: CTlsSocket::OnSend() 12:50:53 Trace: CTlsSocket::OnRead() 12:50:53 Trace: CTlsSocket::ContinueHandshake() 12:50:53 Trace: CTlsSocket::OnRead() 12:50:53 Trace: CTlsSocket::ContinueHandshake() 12:50:53 Trace: Handshake successful 12:50:53 Trace: Cipher: 3DES-CBC, MAC: SHA1 12:50:53 Status: Verifying certificate... 12:50:53 Trace: CFtpControlSocket::SendNextCommand() 12:50:53 Command: USER newguy 12:50:53 Status: TLS/SSL connection established. 12:50:53 Trace: CTlsSocket::OnRead() 12:50:53 Trace: CFtpControlSocket::OnReceive() 12:50:53 Response: 331 Please specify the password. 12:50:53 Trace: CFtpControlSocket::SendNextCommand() 12:50:53 Command: PASS ******** 12:50:54 Trace: CTlsSocket::OnRead() 12:50:54 Trace: CTlsSocket::Failure(-8, 103) 12:50:54 Error: GnuTLS error -8: A record packet with illegal version was received. 12:50:54 Trace: CRealControlSocket::OnClose(103) 12:50:54 Trace: CControlSocket::DoClose(64) 12:50:54 Trace: CFtpControlSocket::ResetOperation(66) 12:50:54 Trace: CControlSocket::ResetOperation(66) 12:50:54 Error: Could not connect to server 12:50:54 Trace: CFileZillaEnginePrivate::ResetOperation(66) |
Is it your intention to use TLS for secure connection to your vsftpd server?
If not, perhaps that is now a default for the FileZilla client whereas before it wasn't and you have since upgraded? If you want to use encryption, have you double checked your vsftpd.conf file. This appears to have a good breakdown: http://www.cyberciti.biz/tips/config...a-ssl-tls.html Specifically related to your error Code:
Error: GnuTLS error -8: A record packet with illegal version was received. Code:
set ftp:ssl-data-use-keys true |
TLS is the intent. I solved it. It had been working fine for a year. The problem was a folder /srv/ftp was missing. That isn't documented anywhere, so if anyone has documentation on this I would love to hear from you. When I turned SSL off it came up as an error in the plain configuration which was how I was able to figure it out. Without that folder the connection fails for some reason.
set ftp:ssl-data-use-keys true is for a different client so that isn't applicable. It works with lftp. I was using Filezilla. My configuration was fine. I'll post that below for anyone who is trying to get vsftpd working. I'm running on Ubuntu Server 10.04 but it should be the same for others. You also need to make sure /etc/pam.d/vsftpd is configured. And this uses virtual users as well. The two links below will help with both of those. http://howto.gumph.org/content/setup...ies-in-vsftpd/ http://www.ubuntututorials.net/insta...virtual-users/ vsftpd.conf =========== Code:
listen=YES |
All times are GMT -5. The time now is 01:56 PM. |