[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: ftp

Hash: RIPEMD160

i think i know what the problem is at least in the way i tried to do
this using socat, ftp opens two ports to connect. 21 for the control
connection and some other port for the data connection.

i would like to hear about what can be done to make this work because i
really can't see any reason why a passive ftp connection should be
unusable from behind a proxy of any kind, 4, 4a or 5

here's the transcript from my gftp session using socat as such:

socat TCP4-LISTEN:4242,fork \

log begins from here:

- --8<--snip--8<--

gFTP 2.0.18, Copyright (C) 1998-2003 Brian Masney <masneyb@xxxxxxxx>. If
you have any questions, comments, or suggestions about this program,
please feel free to email them to me. You can always find out the latest
news about gFTP from my website at http://www.gftp.org/
gFTP comes with ABSOLUTELY NO WARRANTY; for details, see the COPYING
file. This is free software, and you are welcome to redistribute it
under certain conditions; for details, see the COPYING file
Looking up localhost
Trying localhost:4242
Connected to localhost:4242
220 ProFTPD  Server (PlanetMirror FTP2) []
USER anonymous
331 Anonymous login ok, send your complete email address as your password.
PASS xxxx
230 Anonymous access granted, restrictions apply.
215 UNIX Type: L8
200 Type set to I
257 "/" is current directory.
Loading directory listing / from server (LC_TIME=C)
227 Entering Passive Mode (203,16,234,85,184,221).
Cannot create a data connection: No route to host
Disconnecting from site localhost

- --8<--snip--8<--

Jay Goodman Tamboli wrote:
> On Oct 4, 2006, at 06:54:56, glymr wrote:
>> I'm rather puzzled why tor proxies every other protocol but refuses ftp
>> and says it isn't a http proxy. ftp != http. why is this error coming up?
>> i grepped the source for ftp and 21 and came up with nothing telling me
>> why it was refusing to talk to ftp servers. i installed a dedicated ftp
>> client, i tried a number of proxy types, obviously not http.
> In what program are you seeing the error message, and what is the message?
> For FTP, you want to use a SOCKS proxy on port 9050. That is, the
> request should go directly to Tor rather than to Privoxy (since Privoxy
> is an http proxy). There may also be DNS leakage depending on which
> version of SOCKS is used. Hopefully someone more knowledgeable than me
> can tell you whether to use SOCKS 4, 4a, 5, or whatever.
> /jgt
> --http://tamboli.cx/
> PGP Key ID: 0x7F2AC862B511029F
Version: GnuPG v1.4.5 (GNU/Linux)