Hi folks, I'm faced with a tricky problem, here are the facts :
lftp + GnuTLS 1.2 **** gnutls_record_recv: A TLS packet with unexpected length was received. ---- Closing data socket ---- Closing control socket drwxr-x--- 8 0 1001 84 Nov 23 2004 incoming ls: Fatal error: gnutls_record_recv: A TLS packet with unexpected length was received. I used vsftpd on server side for this test, if I use proftpd the listing is rightly done but I have to do a "ctrl+c" to get back to the lftp prompt. lftp + OpenSSL 0.9.8 ---> LIST <--- 150 Here comes the directory listing. Certificate depth: 0; subject: certificate stuff... WARNING: Certificate verification: self signed certificate **** SSL_read: wrong version number ---> ABOR What does mean this "SSL_read: wrong version number" ? Does lftp handle OpenSSL 0.9.8 ? Obviously it could compile. I don't understand very well what's the problem here. If I use proftpd on server side I'm just stuck at listing. Also, vsftpd and proftpd I used for the purpose of this test are compiled against OpenSSL 0.9.8. lftp + OpenSSL 0.9.7 perfectly working. As you maybe know, in recent distros openssl 0.9.7 isn't avaible, you have to downgrade the libssl in order to use it. I could bypass the problems for gnutls and openssl 0.9.8 by setting "ftp:ssl-protect-list no". I'm not sure about the consquences of this option... I thought it'll disable the authentication and listing encryption, but ftp servers allowed me. After a buch of dumping, it appears that authentication and listing are encrypted and AUTH TLS is rightly done. What does this option do ? Regards. -- Alexandre Ahmim-Richard passe at clope dot net http://www.u-admin.org
