Opened 16 years ago

Last modified 11 years ago

#3645 closed Bug report

Directory listing failed

Reported by: rjj999 Owned by:
Priority: normal Component: Other
Keywords: Cc: rjj999, Tim Kosse
Component version: Operating system type:
Operating system version:

Description

Using 3.1.0.1 on XP SP3, when I connect to ATT (worldnet) server, I get "directory listing failed" on the remote site. It appears that I am connected to the server,

Reverting to 3.0.11.1, everything works correctly.

This problem happens with three different ATT accounts and has persisted for three days.

I am able to connect correctly with another provider's server.

Status: Resolving address of upload.att.net
Status: Connecting to 204.127.208.22:21...
Status: Connection established, waiting for welcome message...
Trace: CFtpControlSocket::OnReceive()
Response: 220-
Response: 220-Welcome to the AT&T WorldNet (sm) Personal Web Pages FTP server sccqpwc12
Response: 220-You are accessing it from host 99.165.196.182
Response: 220-at Thu Jul 31 19:30:40 2008 GMT
Response: 220-
Response: 220-For more tips on how to configure your FTP or Web Publishing
Response: 220-software to work with Personal Web Pages@…, please follow
Response: 220-the instructions on these web pages:
Response: 220-
Response: 220- http://www.wurd.com/pwp_ftpindex.php
Response: 220- or
Response: 220- http://www.wurd.com/pwp_editors.php
Response: 220-
Response: 220-*
Response: 220-AT&T STRONGLY RECOMMENDS THAT YOU CONFIGURE FTP WITH TLS ENCRYPTION
Response: 220-FOR ANY OFF NETWORK (Non Dial) ACCESS TO THE SERVICE. SEE THE HELP
Response: 220-FILES FOR YOUR PARTICULAR CLIENT FOR FURTHER INFORMATION.
Response: 220-
*
Response: 220-
Response: 220- IMPORTANT
Response: 220-Any access to and use of this FTP server, authorized or
Response: 220-unauthorized, is governed by and constitutes your acceptance of
Response: 220-the terms and conditions imposed on the following web page:
Response: 220-
Response: 220- http://home.att.net/pwp_gia_terms.html
Response: 220-
Response: 220-Use your EMAIL-ID at the login prompt (the portion before the "@").
Response: 220-Use your EMAIL PASSWORD at the password prompt.
Response: 220-
Response: 220-
Response: 220 PWPFTPD 2.02 (6feb2002) Server (AT&T WorldNet (sm) Personal Web Pages FTP server) [sccqpwc12]
Trace: CFtpControlSocket::SendNextCommand()
Command: AUTH TLS
Trace: CFtpControlSocket::OnReceive()
Response: 234 AUTH TLS successful
Status: Initializing TLS...
Trace: CTlsSocket::Handshake()
Trace: CTlsSocket::Handshake()
Trace: CTlsSocket::Handshake()
Trace: CTlsSocket::Handshake()
Trace: CTlsSocket::Handshake()
Trace: Handshake successful
Trace: Cipher: 3DES-CBC, MAC: SHA1
Status: Verifying certificate...
Trace: CFtpControlSocket::SendNextCommand()
Command: USER presbypromise
Status: TLS/SSL connection established.
Trace: CFtpControlSocket::OnReceive()
Response: 331 Password required for presbypromise.
Trace: CFtpControlSocket::SendNextCommand()
Command: PASS *
Trace: CFtpControlSocket::OnReceive()
Response: 230-FTP Quick Reminder:
Trace: CFtpControlSocket::OnReceive()
Response: 230- If you are using a browser to FTP:
Response: 230- 1. Your Home directory listing will appear in your browser window.
Response: 230- 2. You can drag-and-drop files into the browser window from any PC
Response: 230- window.
Response: 230-
Response: 230- Note: if your ftp client sets the initial directory:
Response: 230- 1. The old initial (home) directory was "/presbypromise".
Response: 230- 2. The new initial (home) directory is just "/"
Response: 230- 3. We have upgraded the servers. Please reconfigure
Response: 230- your software!
Response: 230-
Response: 230 User presbypromise logged in.
Trace: CFtpControlSocket::SendNextCommand()
Command: SYST
Trace: CFtpControlSocket::OnReceive()
Response: 215 UNIX Type: L8
Trace: CFtpControlSocket::SendNextCommand()
Command: FEAT
Trace: CFtpControlSocket::OnReceive()
Response: 500 FEAT not understood.
Trace: CFtpControlSocket::SendNextCommand()
Command: PBSZ 0
Trace: CFtpControlSocket::OnReceive()
Response: 200 PBSZ 0 successful
Trace: CFtpControlSocket::SendNextCommand()
Command: PROT P
Trace: CFtpControlSocket::OnReceive()
Response: 200 Protection set to Private
Status: Connected
Trace: CFtpControlSocket::ResetOperation(0)
Trace: CControlSocket::ResetOperation(0)
Status: Retrieving directory listing...
Trace: CFtpControlSocket::SendNextCommand()
Trace: CFtpControlSocket::ChangeDirSend()
Command: PWD
Trace: CFtpControlSocket::OnReceive()
Response: 257 "/" is current directory.
Trace: CFtpControlSocket::ResetOperation(0)
Trace: CControlSocket::ResetOperation(0)
Trace: CFtpControlSocket::ParseSubcommandResult(0)
Trace: CFtpControlSocket::ListSubcommandResult()
Trace: CFtpControlSocket::SendNextCommand()
Trace: CFtpControlSocket::TransferSend()
Command: TYPE I
Trace: CFtpControlSocket::OnReceive()
Response: 200 Type set to I.
Trace: CFtpControlSocket::TransferParseResponse()
Trace: CFtpControlSocket::SendNextCommand()
Trace: CFtpControlSocket::TransferSend()
Command: PASV
Trace: CFtpControlSocket::OnReceive()
Response: 227 Entering Passive Mode (204,127,208,22,14,176).
Trace: CFtpControlSocket::TransferParseResponse()
Trace: CFtpControlSocket::SendNextCommand()
Trace: CFtpControlSocket::TransferSend()
Command: LIST
Trace: CTransferSocket::OnConnect
Trace: CTlsSocket::Handshake()
Trace: CTlsSocket::Handshake()
Trace: CFtpControlSocket::OnReceive()
Response: 150 Opening ASCII mode data connection for file list
Trace: CFtpControlSocket::TransferParseResponse()
Trace: CFtpControlSocket::SendNextCommand()
Trace: CFtpControlSocket::TransferSend()
Trace: CTlsSocket::Handshake()
Trace: CTlsSocket::Handshake()
Trace: Handshake successful
Trace: Cipher: 3DES-CBC, MAC: SHA1
Trace: CTransferSocket::OnConnect
Listing: drwxr-xr-x 9 pwpuser pwpuser 4096 Jan 31 2008 AnnlRept
Listing: drwxr-xr-x 2 pwpuser pwpuser 4096 Sep 14 2007 Calendar
Listing: drwxr-xr-x 2 pwpuser pwpuser 4096 Aug 18 2004 ComesOut
Listing: drwxr-xr-x 2 pwpuser pwpuser 4096 Aug 18 2004 Contribute
Listing: drwxr-xr-x 2 pwpuser pwpuser 4096 Aug 18 2004 Dedction
Listing: -rw-r--r-- 1 pwpuser pwpuser 2344 Aug 26 2004 Home.htm
Listing: -rw-r--r-- 1 pwpuser pwpuser 2344 Aug 26 2004 Home.html
Listing: drwxr-xr-x 2 pwpuser pwpuser 4096 May 23 2007 Links
Listing: drwxr-xr-x 24 pwpuser pwpuser 4096 May 21 13:46 NL
Listing: drwxr-xr-x 10 pwpuser pwpuser 4096 Jan 31 2008 News
Listing: drwxr-xr-x 2 pwpuser pwpuser 4096 Aug 18 2004 Parents
Trace: CFtpControlSocket::OnReceive()
Response: 226-Transfer complete.
Response: 226 Quotas on: using 9815266 of 26214400 bytes
Trace: CFtpControlSocket::TransferParseResponse()
Trace: CFtpControlSocket::SendNextCommand()
Trace: CFtpControlSocket::TransferSend()
Trace: CTlsSocket::OnSocketEvent(): pending data, postponing close event
Listing: drwxr-xr-x 2 pwpuser pwpuser 4096 Aug 18 2004 People
Listing: drwxr-xr-x 3 pwpuser pwpuser 4096 Jan 27 2006 RDP
Listing: drwxr-xr-x 2 pwpuser pwpuser 4096 Aug 18 2004 RefSunday
Listing: drwxr-xr-x 5 pwpuser pwpuser 4096 Sep 16 2004 Reports
Listing: drwxr-xr-x 3 pwpuser pwpuser 4096 Oct 5 2007 Resource
Listing: drwxr-xr-x 3 pwpuser pwpuser 4096 Aug 26 2004 Retrt04
Listing: drwxr-xr-x 2 pwpuser pwpuser 4096 Aug 18 2004 Tmpl
Listing: drwxr-xr-x 2 pwpuser pwpuser 4096 Aug 18 2004 Youth
Listing: -rw-r--r-- 1 pwpuser pwpuser 164 Aug 18 2004 counter.gif
Listing: -rw-r--r-- 1 pwpuser pwpuser 894 Aug 31 2007 favicon.ico
Listing: -rw-r--r-- 1 pwpuser pwpuser 2344 Aug 26 2004 home.htm
Listing: -rw-r--r-- 1 pwpuser pwpuser 7312 May 21 13:53 home.html
Trace: GnuTLS error -9: A TLS packet with unexpected length was received.
Status: Server did not properly shut down TLS connection
Error: Could not read from transfer socket: ECONNABORTED - Connection aborted
Trace: CTransferSocket::TransferEnd(3)
Trace: CFtpControlSocket::TransferEnd()
Trace: CFtpControlSocket::ResetOperation(2)
Trace: CControlSocket::ResetOperation(2)
Trace: CFtpControlSocket::ParseSubcommandResult(2)
Trace: CFtpControlSocket::ListSubcommandResult()
Trace: CFtpControlSocket::ResetOperation(2)
Trace: CControlSocket::ResetOperation(2)
Error: Failed to retrieve directory listing

Change History (1)

comment:1 by Tim Kosse, 16 years ago

Your server violates the SSL/TLS protocol specifications by not performing an orderly SSL/TLS shutdown. Since this misbehavior is indistinguishable from an attacker sending spoofed FIN packets, FileZilla has to assume the worst case.
Previous versions of FileZilla did not properly complain about this blatant server flaw.

You have to upgrade to a better server that does perform orderly SSL/TLS shutdowns.

Note: See TracTickets for help on using tickets.