Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations SkipVought on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

How do I setup ssl to use with an ftp server?

Status
Not open for further replies.
Usalabs1

Usalabs1

Technical User
Jun 29, 2003
131
0
0
US
I'm using windows xp pro and IIS 5.0 for the webserver, I'm not using the ftp server side of IIS, I use a 3rd party server called 'serv-u' with ssl support, when I choose to use ssl on certain web pages, there's no problem with https access

The problem is, when I setup ssl with the self signed certificate, (created by serv-u), then I install it into the trusted certificates section of windows, only ftp clients that support ssl, can connect.

The only way that the server can be accessed is by an ftp client that supports ssl, and not everyone uses an ftp client, I even tried typing in the server address into internet explorer e.g... ftp://username:password@myserver.com:port or even this ftps://username:password@myserver.com:port

The result is 'unable to connect using ssl', I even set IE for ftp passive mode, the same error, but when I use an ftp client, there's no problem, is there a way that a user can use IE (if they don't have a client), so that IE can connect to my ftp server using ssl?

Or if someone could suggest an ftp server that would allow ssl connection from IE or an ftp client.
 
Sort by date Sort by votes
bcastner.....The microsoft article refers to http and https calls using ssl, what I'm looking for is using ssl with ftp, I have no problem with https, the problem is with using ftp:// not
for example.... if I entered into IE it works, but if I use the ftps:// address then connection via ssl doesn't work.
 
Upvote 0 Downvote
I do not have a reference to the changes made on the ftp side of IE to control "phising", but I am certain they were made.

IE with hotfixes will not accept a phised address that contains a username and passsword.
 
Upvote 0 Downvote

For more information, consult RFC2396, 3.2.2

Incidentally, RFC2396 also states,
"Some URL schemes use the format 'user:rassword' in the userinfo field. This practice is NOT RECOMMENDED, because the passing of authentication information in clear text (such as URI) has proven to be a security risk in almost every case where it has been used."
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Miluis
  • Locked
  • Question
What application do you use
Replies
8
Views
150
2ffat
2ffat
pjw001
  • Locked
  • Question
How to configure Bookmarks in Chrome 2
Replies
4
Views
119
pjw001
pjw001
Andrzejek
  • Locked
  • Question
How to Disable Google Chrome Password Manager 2
Replies
3
Views
166
combo
combo
goombawaho
  • Locked
  • Question
Risk of running unsupported server version 1
Replies
7
Views
124
goombawaho
goombawaho
Diane Sandstrom
  • Locked
  • Question
PDF with highlighting
Replies
2
Views
67
Diane Sandstrom
Diane Sandstrom

Part and Inventory Search

Sponsor

Back
Top