I forgot
One question.
Is it possible in the future not to use this rootcerts.pem file, only accept the cert offered by the ftp server? like in browsers when accessing https site-s.
Information on how to use the ssl/tls feature for secure ftp
Moderators: Hacker, petermad, Stefan2, white
G. & Author only know
2OutlawZ
I don't know if this is planned and possible…
- I think you mean the public keys ? Maybe the Author has a clue about that.
BTW : During the private tests, I got also the too old DLLs, so I was aware…
KR
Claude
Clo
I don't know if this is planned and possible… - I think you mean the public keys ? Maybe the Author has a clue about that.
BTW : During the private tests, I got also the too old DLLs, so I was aware…
KRClaude
Clo
#31505 Traducteur Français de T•C French translator Aide en Français Tutoriels Français English Tutorials
2Clo
I hope that's possible cuz i've seen it other ftp clients fith ftps support and i hope it's planned
Yepp i meant the public keys.
After my ftp server has ftps support and found a great ftps client in tc, now i'm trying to conf Apache 2.2 with mod_ssl and openssl on Win32 sys but it looks to be impossible always get error msgs, so i have now funny days, but i'm glad to get working the tc's ftps support.
Regards
OutlawZ
I hope that's possible cuz i've seen it other ftp clients fith ftps support and i hope it's planned
Yepp i meant the public keys.
After my ftp server has ftps support and found a great ftps client in tc, now i'm trying to conf Apache 2.2 with mod_ssl and openssl on Win32 sys but it looks to be impossible always get error msgs, so i have now funny days, but i'm glad to get working the tc's ftps support.
Regards
OutlawZ
Useful !
2OutlawZ
Hello !
- So, please report the results here, they will be welcome !
• Have fun !
KR
Claude
Clo
Hello !
• No doubt that such tests are useful for that new (ticklish) function in TC !…After my ftp server has ftps support and found a great ftps client in tc, now i'm trying to conf Apache 2.2 with mod_ssl and openssl on Win32 sys but it looks to be impossible always get error msgs, so i have now funny days, but i'm glad to get working the tc's ftps support.
- So, please report the results here, they will be welcome !
• Have fun !
KRClaude
Clo
#31505 Traducteur Français de T•C French translator Aide en Français Tutoriels Français English Tutorials
2Clo
It's my pleasure to help to test some features.
Now i have some problems. inside of lan work fine implicit and explicit ssl too, but i'm behind a router and tried it from outside, and always get error after LIST command:
425 Cannot open data connection.
the server is in the routers DMZ and PASV mode not helped.
- DMZ forwards all queries to the defined ip, isn't?
- If i open a range of ports thats not too secure any way..
Any idea?
Regards
OutlawZ
It's my pleasure to help to test some features.
Now i have some problems. inside of lan work fine implicit and explicit ssl too, but i'm behind a router and tried it from outside, and always get error after LIST command:
425 Cannot open data connection.
the server is in the routers DMZ and PASV mode not helped.
- DMZ forwards all queries to the defined ip, isn't?
- If i open a range of ports thats not too secure any way..
Any idea?
Regards
OutlawZ
-
Phobophile
- Junior Member
- Posts: 8
- Joined: 2006-06-01, 18:56 UTC
- Contact:
Thanks Ghisler
Hi,
Just wanted to say thank you (Ghisler) for this feature!
I've just tested it and it works great!
You're doing an excellent work with TC and I am very happy with this product!!
Dor Karter
Just wanted to say thank you (Ghisler) for this feature!
I've just tested it and it works great!
You're doing an excellent work with TC and I am very happy with this product!!
Dor Karter
-
ghisler(Author)
- Site Admin
- Posts: 50390
- Joined: 2003-02-04, 09:46 UTC
- Location: Switzerland
- Contact:
2OutlawZ
You cannot use active (PORT) mode with NAT routers. Why? The control connection is encrypted, so the router cannot see the PORT commands, and cannot convert them to the outside IP address!
One solution is to turn OFF the encryption of the control connection just after sending user name and password.
You can do this in RC1 by adding the command
CCC
to the "Send commands" field in the configuration of that ftp connection.
You cannot use active (PORT) mode with NAT routers. Why? The control connection is encrypted, so the router cannot see the PORT commands, and cannot convert them to the outside IP address!
One solution is to turn OFF the encryption of the control connection just after sending user name and password.
You can do this in RC1 by adding the command
CCC
to the "Send commands" field in the configuration of that ftp connection.
Author of Total Commander
https://www.ghisler.com
https://www.ghisler.com
Drag and drop support for https
Why can't I drop a https url with Shift key pressed onto the Total Commander window in order to download a file?
It is possible to do so with a http url. Why not with a https url? Is it not supported (yet)?
It is possible to do so with a http url. Why not with a https url? Is it not supported (yet)?
-
ghisler(Author)
- Site Admin
- Posts: 50390
- Joined: 2003-02-04, 09:46 UTC
- Location: Switzerland
- Contact:
Sorry, TC does not support HTTPS internally because of Swiss Crypto regulations. I'm using my own HTTP download code, so I cannot add HTTPS there. That's why in the WebDAV plugin I switched to the Internet* functions for HTTP transfers, because it also supports HTTPS. It has some other limitations, though, that's why I'm not using it for the HTTP downloads in TC, sorry.
Author of Total Commander
https://www.ghisler.com
https://www.ghisler.com
Hey a real begginer here
i am stucked with this part:
"9. Issue the following two commands to convert to openssl format:
openssl pkcs7 -inform DER -in rootcerts.p7b -print_certs -out unfiltered.pem
openssl x509 -in unfiltered.pem -out rootcert.pem
10. Put the file rootcert.pem in the Total Commander directory"
Where should i put those commands? i have done all till this step!
What now?
i am stucked with this part:
"9. Issue the following two commands to convert to openssl format:
openssl pkcs7 -inform DER -in rootcerts.p7b -print_certs -out unfiltered.pem
openssl x509 -in unfiltered.pem -out rootcert.pem
10. Put the file rootcert.pem in the Total Commander directory"
Where should i put those commands? i have done all till this step!
What now?
Hi, muzzi.
Going through Chrstian's instruction here, I am confident that
Karl
Going through Chrstian's instruction here, I am confident that
- (9.) the two openssl commands need to be typed inside a cmd.exe window (Command Prompt) manually once
- (10.) just tells you that the file rootcert.pem (cf. step (9) above, please) needs to be saved inside the Total Commander programme folder. You can even use T.C. itself to copy it there.
Karl
Hello, everyonekarlchen wrote:Hi, muzzi.
Going through Chrstian's instruction, I am confident thatHTH,
- (9.) the two openssl commands need to be typed inside a cmd.exe window (Command Prompt) manually once
- (10.) just tells you that the file rootcert.pem (cf. step (9) above, please) needs to be saved inside the Total Commander programme folder. You can even use T.C. itself to copy it there.
Karl
.I'm here for the first time and I show up because I have troubles with both old and new Total Commander, so I somehow got to this topic and read instructions that were supposed to help me.
I've followed written instructions and also stuck on the 9th, so I followed these quoted instructions, and had the same problem as muzzi. then when I opened cmd.exe in the same folder where openssl.exe is stored, and typed those 2 commands, I got : "The system cannot execute the specified program."
Now I don't know what to do. I WOULD "prefix the complete pathname to openssl.exe", but I don't know what it actually means
.Would someone please be kind and explain it to me more precisely?
Karl or anyone?