AllanF

Thanks for the valuable info you have provided. Seems like I may not require any more security measures apart from what I already have. Please allow me to explain my current scenario and kindly let me know if I have a vulnerability. As mentioned earlier I have TFTPServer and TWSocketServer on Server. Client machine's TWSocket is always connected to the Server's TWSocketServer. Only simple info is passed via the sockets. All files are passed via FTP (encrypted if critical). When Client Socket connects to the Server Socket I validate if first OnClientData is as per my expected format else I abort that Client connection. For FTP connection I send a new username and password at each connect FTP Server understands it is correct by doing a matching system between Username and Password. When files are exchanged between client and server they are AES256 encrypted and the server just stores it on his machine, Server does not need to decrypt it. So there is no password exchanged for File Decryption purpose.

Hi , I am not able to connect to a SSL site with OverbyteIcsSslFtpTst.exe whereas with FileZilla it connects. 'Test.Rebex.Net' allows us to test SSL FTP site. OverbyteIcsSslFtpTst.exe connects to the non-SSL site and gives me directory list, whereas with SSL it does not connect. I have copied libcrypto-1_1 and libssl-1_1 in Exe folder too. I have compiled with Delphi Seattle. With SSL port 990 Executing Requested Command ! Init SSL failed Access violation at address 0062E467 in module 'OverbyteIcsSslFtpTst.exe'. Read of address 00000040 Session Closed, error = 0 Request 12 Done. StatusCode = 550 LastResponse was : '550 Access violation at address 0062E467 in module 'OverbyteIcsSslFtpTst.exe'. Read of address 00000040' Error = 550 (550 Access violation at address 0062E467 in module 'OverbyteIcsSslFtpTst.exe'. Read of address 00000040) Command Failure Without SSL port 21 Executing Requested Command < 220 Microsoft FTP Service Session Connected, error = 0 > USER demo < 331 Password required for demo. > PASS password < 230 User logged in. > CWD / < 250 CWD command successful. > PASV < 227 Entering Passive Mode (195,144,107,198,4,9). ! Passive connection requested to: 195.144.107.198:1033, control channel: 195.144.107.198 > NLST *.* < 150 Opening ASCII mode data connection. < 226 Transfer complete. ! 12bytes received/sent in 203 milliseconds > QUIT < 221 Goodbye. Session Closed, error = 0 Request 12 Done. StatusCode = 226 LastResponse was : '226 Transfer complete.' No error Command Success

DLLs are in the same directory as the application. OverbyteIcsXferTst works fine !! Will check and get back if necessary.

I copied the latest dlls then too same issue. Do I have to have any of these PEM files ,certificates etc ? The other SSL (Explicit) too fails

Hi, I am running TFTPServer (Delphi Seattle) on a machine that is visible to FtpClients across the WAN (port forwarding). I have used the OnPasvIpAddr event to set APasvIpAddr to the public IP. This works fine for one send from my FtpClient (one send from FtpClient involves few other operations like GetFileSize , PUT & RenameFile). During the second Send the Clients gets error at the Rename. Kindly note that I connect from client only once for both the Sends. Using FileZilla FTP Server (with setting external IP) client works fine. TFTPServer works fine too on LAN and on a machine with Public IP machine (VPS). Please advice the correct way to use PasvIpAddr. procedure Tform_FtpServer.FtpServer1PasvIpAddr(Sender: TObject;Client: TFtpCtrlSocket; var APasvIpAddr: TFtpString;var SetPasvIpAddr: Boolean); begin if (sysPasvAddress='') then exit ; // sysPasvAddress = my variable suggesting that external address is required SetPasvIpAddr:=True ; APasvIpAddr:=sysPasvAddress ; end; Regards Allan

Thanks Angus for the support you have given. Though this is not the most appropriate solution it should suffice for me.

The IP of the server is constant over past few days. The IP is set in a database and I supply the same to the client each time. I observed that the sending works for multiple files if they are small (15 files of 21mb each) , it gives problem when file takes a few minutes to copy (150MB). Could it be that the FTP control port is being closed by the firewall as it is not being used ? Can the Server keep the Control port alive ? I am trying to do it from the Client side too.

Hi, Of the Below four files three got copied properly. The fourth gave a problem. When copying a file I copy it as Filename~$~ and then check if copied size is correct and Rename it back to FileName. DB10008104_001700001FCr.DSC~$~ DB10008104_001700001FCr.DSB~$~ DB10008104_001800001FCr.DSC~$~ DB10008104_001800001FCr.DSB~$~ Below error comes while Renaming the file after copy is completed on Client side. <Connect_Ftp2> <DllDate>Dec 13 2012</DllDate> <UnlockPrefix>xxxxxx</UnlockPrefix> <Username>AF:SYSTEM</Username> <Architecture>Little Endian; 32-bit</Architecture> <Language>C++ Builder XE2</Language> <VerboseLogging>1</VerboseLogging> <error>Asynchronous FTP operation already in progress.</error> </Connect_Ftp2> </ChilkatLog> Below are the corresponding TFTPServer logs InfoMemo ! Server started OneTimePw (c) 1997-2012 F. Piette V8.00 Using: TWSocket (c) 1996-2017 Francois Piette V8.43 TFtpServer (c) 1998-2016 F. Piette V8.37 Winsock: Version 2.2 WinSock 2.0 Running ! Server started OneTimePw (c) 1997-2012 F. Piette V8.00 Using: TWSocket (c) 1996-2017 Francois Piette V8.43 TFtpServer (c) 1998-2016 F. Piette V8.37 Winsock: Version 2.2 WinSock 2.0 Running ! 223.182.185.15 [1] connected < 223.182.185.15=(Not yet Logged On) USER XYZ > 223.182.185.15;AF [0ms] 331 Password required for XYZ. < 223.182.185.15;AF PASS ABC ! 223.182.185.15;AF User 'XYZ' is authenticated and logged on locally to Windows ! 223.182.185.15;AF Home Directory: C:\Program Files\DB5\ > 223.182.185.15;AF [0ms] 230 User XYZ logged in. < 223.182.185.15;AF TYPE I > 223.182.185.15;AF [0ms] 200 Type set to I. < 223.182.185.15;AF SYST > 223.182.185.15;AF [0ms] 215 UNIX Type: L8 Internet Component Suite < 223.182.185.15;AF FEAT > 223.182.185.15;AF [0ms] 211-Extensions supported: HOST SIZE REST STREAM MDTM MDTM YYYYMMDDHHMMSS[+-TZ] filename MLST size*;type*;perm*;create*;modify*; MFMT MD5 XCRC "filename" start end XMD5 "filename" start end CLNT SITE INDEX;ZONE;MSG;EXEC;PSWD;CMLSD;DMLSD XCMLSD XDMLSD 211 END < 223.182.185.15;AF FEAT > 223.182.185.15;AF [0ms] 211-Extensions supported: HOST SIZE REST STREAM MDTM MDTM YYYYMMDDHHMMSS[+-TZ] filename MLST size*;type*;perm*;create*;modify*; MFMT MD5 XCRC "filename" start end XMD5 "filename" start end CLNT SITE INDEX;ZONE;MSG;EXEC;PSWD;CMLSD;DMLSD XCMLSD XDMLSD 211 END < 223.182.185.15;AF CWD / > 223.182.185.15;AF [0ms] 250 CWD command successful. "/C:/" is current directory. < 223.182.185.15;AF CWD C:\Backup > 223.182.185.15;AF [0ms] 250 CWD command successful. "/C:/Backup" is current directory. < 223.182.185.15;AF CWD system > 223.182.185.15;AF [0ms] 250 CWD command successful. "/C:/Backup/system" is current directory. < 223.182.185.15;AF CWD ExtWrk > 223.182.185.15;AF [0ms] 250 CWD command successful. "/C:/Backup/system/ExtWrk" is current directory. < 223.182.185.15;AF PASV > 223.182.185.15;AF [0ms] 227 Entering Passive Mode (27,111,15,222,191,205). < 223.182.185.15;AF STOR DB10008104_001700001FCr.DSC~$~ > 223.182.185.15;AF [0ms] 150 Opening data connection for DB10008104_001700001FCr.DSC~$~. ! 223.182.185.15;AF C:\Backup\system\ExtWrk\DB10008104_001700001FCr.DSC~$~ 4.15Kbytes received in 47 milliseconds > 223.182.185.15;AF [94ms] 226 File received ok < 223.182.185.15;AF SIZE DB10008104_001700001FCr.DSC~$~ > 223.182.185.15;AF [15ms] 213 4248 < 223.182.185.15;AF SIZE DB10008104_001700001FCr.DSC > 223.182.185.15;AF [0ms] 550 Command failed: File not found. < 223.182.185.15;AF RNFR DB10008104_001700001FCr.DSC~$~ > 223.182.185.15;AF [0ms] 350 File exists, ready for destination name. < 223.182.185.15;AF RNTO DB10008104_001700001FCr.DSC > 223.182.185.15;AF [16ms] 250 File '/C:/Backup/system/ExtWrk/DB10008104_001700001FCr.DSC~$~' renamed to '/C:/Backup/system/ExtWrk/DB10008104_001700001FCr.DSC'. < 223.182.185.15;AF CWD / > 223.182.185.15;AF [0ms] 250 CWD command successful. "/C:/" is current directory. < 223.182.185.15;AF CWD C:\Backup > 223.182.185.15;AF [16ms] 250 CWD command successful. "/C:/Backup" is current directory. < 223.182.185.15;AF CWD system > 223.182.185.15;AF [0ms] 250 CWD command successful. "/C:/Backup/system" is current directory. < 223.182.185.15;AF CWD ExtWrk > 223.182.185.15;AF [0ms] 250 CWD command successful. "/C:/Backup/system/ExtWrk" is current directory. < 223.182.185.15;AF PASV > 223.182.185.15;AF [0ms] 227 Entering Passive Mode (27,111,15,222,191,206). < 223.182.185.15;AF STOR DB10008104_001700001FCr.DSB~$~ > 223.182.185.15;AF [0ms] 150 Opening data connection for DB10008104_001700001FCr.DSB~$~. ! 223.182.185.15;AF C:\Backup\system\ExtWrk\DB10008104_001700001FCr.DSB~$~ 106Mbytes received in 218 seconds (497Kbytes/sec) > 223.182.185.15;AF [218375ms] 226 File received ok < 223.182.185.15;AF SIZE DB10008104_001700001FCr.DSB~$~ > 223.182.185.15;AF [0ms] 213 111340889 < 223.182.185.15;AF SIZE DB10008104_001700001FCr.DSB > 223.182.185.15;AF [0ms] 550 Command failed: File not found. < 223.182.185.15;AF RNFR DB10008104_001700001FCr.DSB~$~ > 223.182.185.15;AF [0ms] 350 File exists, ready for destination name. < 223.182.185.15;AF RNTO DB10008104_001700001FCr.DSB > 223.182.185.15;AF [0ms] 250 File '/C:/Backup/system/ExtWrk/DB10008104_001700001FCr.DSB~$~' renamed to '/C:/Backup/system/ExtWrk/DB10008104_001700001FCr.DSB'. < 223.182.185.15;AF QUIT > 223.182.185.15;AF [0ms] 221 Goodbye. ! 223.182.185.15;AF disconnected after 222 secs, total recv 106M, total xmit 2.18K ! 223.182.185.15 [2] connected < 223.182.185.15=(Not yet Logged On) USER XYZ > 223.182.185.15;AF [0ms] 331 Password required for XYZ. < 223.182.185.15;AF PASS ABC ! 223.182.185.15;AF User 'XYZ' is authenticated and logged on locally to Windows ! 223.182.185.15;AF Home Directory: C:\Program Files\DB5\ > 223.182.185.15;AF [0ms] 230 User XYZ logged in. < 223.182.185.15;AF TYPE I > 223.182.185.15;AF [0ms] 200 Type set to I. < 223.182.185.15;AF SYST > 223.182.185.15;AF [0ms] 215 UNIX Type: L8 Internet Component Suite < 223.182.185.15;AF FEAT > 223.182.185.15;AF [0ms] 211-Extensions supported: HOST SIZE REST STREAM MDTM MDTM YYYYMMDDHHMMSS[+-TZ] filename MLST size*;type*;perm*;create*;modify*; MFMT MD5 XCRC "filename" start end XMD5 "filename" start end CLNT SITE INDEX;ZONE;MSG;EXEC;PSWD;CMLSD;DMLSD XCMLSD XDMLSD 211 END < 223.182.185.15;AF FEAT > 223.182.185.15;AF [0ms] 211-Extensions supported: HOST SIZE REST STREAM MDTM MDTM YYYYMMDDHHMMSS[+-TZ] filename MLST size*;type*;perm*;create*;modify*; MFMT MD5 XCRC "filename" start end XMD5 "filename" start end CLNT SITE INDEX;ZONE;MSG;EXEC;PSWD;CMLSD;DMLSD XCMLSD XDMLSD 211 END < 223.182.185.15;AF CWD / > 223.182.185.15;AF [0ms] 250 CWD command successful. "/C:/" is current directory. < 223.182.185.15;AF CWD C:\Backup > 223.182.185.15;AF [0ms] 250 CWD command successful. "/C:/Backup" is current directory. < 223.182.185.15;AF CWD system > 223.182.185.15;AF [0ms] 250 CWD command successful. "/C:/Backup/system" is current directory. < 223.182.185.15;AF CWD ExtWrk > 223.182.185.15;AF [0ms] 250 CWD command successful. "/C:/Backup/system/ExtWrk" is current directory. < 223.182.185.15;AF PASV > 223.182.185.15;AF [0ms] 227 Entering Passive Mode (27,111,15,222,191,207). < 223.182.185.15;AF STOR DB10008104_001800001FCr.DSC~$~ > 223.182.185.15;AF [0ms] 150 Opening data connection for DB10008104_001800001FCr.DSC~$~. ! 223.182.185.15;AF C:\Backup\system\ExtWrk\DB10008104_001800001FCr.DSC~$~ 4.16Kbytes received in 94 milliseconds > 223.182.185.15;AF [94ms] 226 File received ok < 223.182.185.15;AF SIZE DB10008104_001800001FCr.DSC~$~ > 223.182.185.15;AF [0ms] 213 4255 < 223.182.185.15;AF SIZE DB10008104_001800001FCr.DSC > 223.182.185.15;AF [0ms] 550 Command failed: File not found. < 223.182.185.15;AF RNFR DB10008104_001800001FCr.DSC~$~ > 223.182.185.15;AF [0ms] 350 File exists, ready for destination name. < 223.182.185.15;AF RNTO DB10008104_001800001FCr.DSC > 223.182.185.15;AF [0ms] 250 File '/C:/Backup/system/ExtWrk/DB10008104_001800001FCr.DSC~$~' renamed to '/C:/Backup/system/ExtWrk/DB10008104_001800001FCr.DSC'. < 223.182.185.15;AF CWD / > 223.182.185.15;AF [0ms] 250 CWD command successful. "/C:/" is current directory. < 223.182.185.15;AF CWD C:\Backup > 223.182.185.15;AF [0ms] 250 CWD command successful. "/C:/Backup" is current directory. < 223.182.185.15;AF CWD system > 223.182.185.15;AF [0ms] 250 CWD command successful. "/C:/Backup/system" is current directory. < 223.182.185.15;AF CWD ExtWrk > 223.182.185.15;AF [0ms] 250 CWD command successful. "/C:/Backup/system/ExtWrk" is current directory. < 223.182.185.15;AF PASV > 223.182.185.15;AF [0ms] 227 Entering Passive Mode (27,111,15,222,191,208). < 223.182.185.15;AF STOR DB10008104_001800001FCr.DSB~$~ > 223.182.185.15;AF [0ms] 150 Opening data connection for DB10008104_001800001FCr.DSB~$~. ! 223.182.185.15;AF C:\Backup\system\ExtWrk\DB10008104_001800001FCr.DSB~$~ 106Mbytes received in 311 seconds (348Kbytes/sec) > 223.182.185.15;AF [311906ms] 226 File received ok ! 223.182.185.15;AF disconnected after 338 secs, total recv 106M, total xmit 1.93K

I have put in over two years of effort on my backup application and your TFtpserver is one of the important component behind it. It has performed very well in all sorts of environments. Currently I have installed it for trial at a customer's place. Please help me out of this one.