Comments (2)
Hi @maltris,
we faced the same issue and were confronted with hanging clients (2 or 3 out ouf 150) at the same point during SSH handshake. We found out that the server-side worked properly and sent a correct response, but the client did not receive it (using tcpdump). The problem was, that this happened on the customer's side and we had only limited debugging capabilities. The client's host was based on Ubuntu 20.04. We never understood the issue completely and have not find a way to reproduce it, but adding
SFTPOptions PessimisticKexinit
helped to workaround the issue of hanging clients. Maybe, you can give it a try, too.
On the client’s side there was a firewall appliance in place and we had it in suspicion of dropping the server's response. Unfortunately, we could not get the firewall logs to underline that theory. For test purposes, we used a pretty old ProFTPD server that was based on 1.3.5e and used the setting for optimistic key exchange. That was working without any issues and the SSH handshake completed normally. Maybe the issue was introduced, starting with ProFTPD 1.3.8.
from proftpd.
Hmm. I've not heard of any reports along these lines before. Let's see if we can get some more details.
Would it be possible to add the following to your ProFTP configuration?
TraceLog /var/log/proftpd-trace.log
Trace ssh2:30 sftp:30
Note that this will generate quite a lot of logging data, for the working connections. I am most interested in the additional trace logging seen for the non-working sessions.
In the mean time, I am attempting to reproduce this issue locally, using debian:12
and alpine:3.19.0
Docker containers; so far, all of the connection attempts are working as expected for me as well.
from proftpd.
Related Issues (20)
- Add crosscompiling support for ./configure.in HOT 1
- Using FTPS after upgrading from 1.3.8a to 1.3.8b leads to crash HOT 4
- SFTP Too many bad authentication attempts - Terminal is working HOT 3
- proftpd not using source port 20 for ftp active HOT 5
- Add support for logging SFTP ciphers/algorithms in SQL databases HOT 6
- Jot API gives the wrong timestamp in mod_exec HOT 6
- Impossible to connect to data port using implicit FTPS HOT 2
- Using mod_facl and mod_vroot at same time causes unexpected permissions issues HOT 16
- Ban on RootLogin does not seem to be working HOT 2
- proftpd in docker - not optimal configurable HOT 2
- Permission question about proftpd.sock HOT 1
- Bad handling of lack of extended attributes leads to SFTP out of memory error HOT 11
- proftpd.org HTTPS not working
- SFTP statvfs extension fails when mod_vroot is in use HOT 15
- DenyUser Limit does not work for ftp, but works for sftp HOT 6
- Repeated reload operations may cause memory leakage. HOT 3
- Implement [email protected] SFTP extension HOT 3
- ftp user in same group can not upload file HOT 6
- SSH public key fingerprints in mod_sftp logs HOT 5
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from proftpd.