Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: SSH shell script to access FTP over explicit TLS/SSL
Top Forums Shell Programming and Scripting SSH shell script to access FTP over explicit TLS/SSL Post 302819809 by mrpi007 on Tuesday 11th of June 2013 12:28:36 PM
Old 06-11-2013
Thank you cero & corona,

lftp is a big step forward. Found my host has it installed by default, anyway. Very nice.

I found that the ssl certificate the ftp server I want to connect to is outdated. So I had to add the line
Code:
set ssl:verify-certificate no

to the script. It logs in the ftp server no problems and attempts to transfer file but doesn't succeed. Here's what I get with debug option:
Code:
---> PASV
<--- 227 Entering Passive Mode ([...ip...]).
---- Connecting data socket to ([...ip...]) port 49556
**** Socket error (Connection timed out) - reconnecting
---- Closing data socket
---- Closing control socket

Any idea what I must do to navigate around this error?
 

10 More Discussions You Might Find Interesting

1. UNIX for Advanced & Expert Users

implicit ssl vs explicit ssl

Can someone explain the difference between the two. Thanks (1 Reply)
Discussion started by: jerardfjay
1 Replies

2. UNIX for Dummies Questions & Answers

Secure ftp using ssl/tls

We have a requirement to setup secure ftp between our AIX v5.3 system and our mainframe. We don't want to use openssh with sftp and scp. Our mainframe uses ftp over ssl/tls so we have to use this on our AIX box. We have openssl on our AIX system but I'm not sure how to setup ssl/tls over ftp on... (4 Replies)
Discussion started by: DANNYC
4 Replies

3. UNIX and Linux Applications

FTP client for HP-UX that supports SFTP/SSL/SSH

Can anyone recommend some good/reliable FTP clients for HP-UX that support SFTP/SSL/SSH and have a command line interface? They need not be "free" (license). Thanks! (2 Replies)
Discussion started by: maxshop
2 Replies

4. Cybersecurity

TLS/SSL vulnerability explained

Here's a pretty good, and even PHB-compatible, explanation of the current TLS/SSl protocol vulnerability, including samples. (0 Replies)
Discussion started by: pludi
0 Replies

5. UNIX for Dummies Questions & Answers

TLS/SSL Openldap Centos 5.5

hi guys I configured my openldap but now I want to implement SSL-TLS This is my basic slapd.conf configuration include /etc/openldap/schema/core.schema include /etc/openldap/schema/cosine.schema include /etc/openldap/schema/inetorgperson.schema include ... (2 Replies)
Discussion started by: karlochacon
2 Replies

6. Linux

SSL/TLS uses the public key to encrypt data ?

Hi, I have a doubt..whether the SSL/TLS protocol uses the public key of the web server to encrypt data before sending it. I knew the browser verifies the public key of the web server using the digital certificate (by verifying the signature of the certificate using trusted authority). whether... (2 Replies)
Discussion started by: chaitus.28
2 Replies

7. Shell Programming and Scripting

connection of JSP using SSH to access Shell script

Hello, I am not sure if I am posting in the right forum. A website is running on a server with <ip1> in unix. It's written in JSP. I need to add a link on the page, which will on-clicking ask for username and password to enter into another server <ip2> and gets all the files from a... (1 Reply)
Discussion started by: shekhar2010us
1 Replies

8. Red Hat

HOW TO DISABLE SSL/TLS RENEGOTIATION?

Hi guys, Those who work on Apache may help me on this. I have following problem Description: The remote service encrypts traffic using TLS / SSL and permits clients to renegotiate connections. The computational requirements for renegotiating a connection are asymmetrical between the... (3 Replies)
Discussion started by: manalisharmabe
3 Replies

9. UNIX for Advanced & Expert Users

ldap over tls -- ssl cert help

Hey Guys, I am trying to setup ldap over tls in our lab. I am generating a self signed cert on the ldap server and importing that into the ldap system so it will use ldap over port 636. The clients will be a mix of solaris and redhat. I am lost on what I need to do on the client side to get... (0 Replies)
Discussion started by: s ladd
0 Replies

10. UNIX for Advanced & Expert Users

SSL/TLS with openldap

Hello to all, I'm beguinner in Linux instalations and I'm trying to Communicate from Web Sites that i have running under apache with openLDAP for users authentication using SSL mediation that seems to be connected with LDAPS. Can someone advise me how to do this, I have already installed... (1 Reply)
Discussion started by: CPMarco
1 Replies

LEARN ABOUT PLAN9

ssl_get_peer_certificate

SSL_get_peer_certificate(3SSL)					      OpenSSL					    SSL_get_peer_certificate(3SSL)

NAME

       SSL_get_peer_certificate - get the X509 certificate of the peer

SYNOPSIS

	#include <openssl/ssl.h>

	X509 *SSL_get_peer_certificate(const SSL *ssl);

DESCRIPTION

       SSL_get_peer_certificate() returns a pointer to the X509 certificate the peer presented. If the peer did not present a certificate, NULL is
       returned.

NOTES

       Due to the protocol definition, a TLS/SSL server will always send a certificate, if present. A client will only send a certificate when
       explicitly requested to do so by the server (see SSL_CTX_set_verify(3)). If an anonymous cipher is used, no certificates are sent.

       That a certificate is returned does not indicate information about the verification state, use SSL_get_verify_result(3) to check the
       verification state.

       The reference count of the X509 object is incremented by one, so that it will not be destroyed when the session containing the peer
       certificate is freed. The X509 object must be explicitly freed using X509_free().

RETURN VALUES

       The following return values can occur:

       NULL
	   No certificate was presented by the peer or no connection was established.

       Pointer to an X509 certificate
	   The return value points to the certificate presented by the peer.

SEE ALSO

       ssl(3), SSL_get_verify_result(3), SSL_CTX_set_verify(3)

1.0.1e								    2013-02-11					    SSL_get_peer_certificate(3SSL)
All times are GMT -4. The time now is 03:25 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy