php tls-srp,FTPS问题:“收到了一个意外长度的TLS数据包。”

最新推荐文章于 2023-04-03 18:32:54 发布
最新推荐文章于 2023-04-03 18:32:54 发布
阅读量579 收藏
点赞数
文章标签: php tls-srp

我试图连接到FTPS服务器(而不是SFTP)。我从一个linux系统连接,所以我尝试了lftp,ftp-ssl,甚至使用php的ftp_ssl_connect,但都没有工作。 (我已经能够使用全部或至少一些上述方法连接到其他FTPS服务器)。FTPS问题:“收到了一个意外长度的TLS数据包。”

最具体的错误我是从lftp的与调试一路攀升至11:

$ lftp

lftp :~> open -u my-username ftps://server.net

Password:

lftp [email protected]:~> debug 99999999999

lftp [email protected]:~> ls

FileCopy(0x717bf0) enters state INITIAL

FileCopy(0x717bf0) enters state DO_COPY

---- dns cache hit

---- Connecting to server.net (IP ADDRESS) port 990

GNUTLS: HSK[acfbb0]: Keeping ciphersuite: DHE_RSA_AES_128_CBC_SHA1

GNUTLS: HSK[acfbb0]: Keeping ciphersuite: DHE_RSA_CAMELLIA_128_CBC_SHA1

GNUTLS: HSK[acfbb0]: Keeping ciphersuite: DHE_RSA_AES_256_CBC_SHA1

GNUTLS: HSK[acfbb0]: Keeping ciphersuite: DHE_RSA_CAMELLIA_256_CBC_SHA1

GNUTLS: HSK[acfbb0]: Keeping ciphersuite: DHE_RSA_3DES_EDE_CBC_SHA1

GNUTLS: HSK[acfbb0]: Keeping ciphersuite: DHE_DSS_AES_128_CBC_SHA1

GNUTLS: HSK[acfbb0]: Keeping ciphersuite: DHE_DSS_CAMELLIA_128_CBC_SHA1

GNUTLS: HSK[acfbb0]: Keeping ciphersuite: DHE_DSS_AES_256_CBC_SHA1

GNUTLS: HSK[acfbb0]: Keeping ciphersuite: DHE_DSS_CAMELLIA_256_CBC_SHA1

GNUTLS: HSK[acfbb0]: Keeping ciphersuite: DHE_DSS_3DES_EDE_CBC_SHA1

GNUTLS: HSK[acfbb0]: Keeping ciphersuite: DHE_DSS_ARCFOUR_SHA1

GNUTLS: HSK[acfbb0]: Removing ciphersuite: DHE_PSK_SHA_AES_128_CBC_SHA1

GNUTLS: HSK[acfbb0]: Removing ciphersuite: DHE_PSK_SHA_AES_256_CBC_SHA1

GNUTLS: HSK[acfbb0]: Removing ciphersuite: DHE_PSK_SHA_3DES_EDE_CBC_SHA1

GNUTLS: HSK[acfbb0]: Removing ciphersuite: DHE_PSK_SHA_ARCFOUR_SHA1

GNUTLS: HSK[acfbb0]: Removing ciphersuite: SRP_SHA_RSA_AES_128_CBC_SHA1

GNUTLS: HSK[acfbb0]: Removing ciphersuite: SRP_SHA_RSA_AES_256_CBC_SHA1

GNUTLS: HSK[acfbb0]: Removing ciphersuite: SRP_SHA_RSA_3DES_EDE_CBC_SHA1

GNUTLS: HSK[acfbb0]: Removing ciphersuite: SRP_SHA_DSS_AES_128_CBC_SHA1

GNUTLS: HSK[acfbb0]: Removing ciphersuite: SRP_SHA_DSS_AES_256_CBC_SHA1

GNUTLS: HSK[acfbb0]: Removing ciphersuite: SRP_SHA_DSS_3DES_EDE_CBC_SHA1

GNUTLS: HSK[acfbb0]: Keeping ciphersuite: RSA_AES_128_CBC_SHA1

GNUTLS: HSK[acfbb0]: Keeping ciphersuite: RSA_CAMELLIA_128_CBC_SHA1

GNUTLS: HSK[acfbb0]: Keeping ciphersuite: RSA_AES_256_CBC_SHA1

GNUTLS: HSK[acfbb0]: Keeping ciphersuite: RSA_CAMELLIA_256_CBC_SHA1

GNUTLS: HSK[acfbb0]: Keeping ciphersuite: RSA_3DES_EDE_CBC_SHA1

GNUTLS: HSK[acfbb0]: Keeping ciphersuite: RSA_ARCFOUR_SHA1

GNUTLS: HSK[acfbb0]: Keeping ciphersuite: RSA_ARCFOUR_MD5

GNUTLS: HSK[acfbb0]: Removing ciphersuite: PSK_SHA_AES_128_CBC_SHA1

GNUTLS: HSK[acfbb0]: Removing ciphersuite: PSK_SHA_AES_256_CBC_SHA1

GNUTLS: HSK[acfbb0]: Removing ciphersuite: PSK_SHA_3DES_EDE_CBC_SHA1

GNUTLS: HSK[acfbb0]: Removing ciphersuite: PSK_SHA_ARCFOUR_SHA1

GNUTLS: HSK[acfbb0]: Removing ciphersuite: SRP_SHA_AES_128_CBC_SHA1

GNUTLS: HSK[acfbb0]: Removing ciphersuite: SRP_SHA_AES_256_CBC_SHA1

GNUTLS: HSK[acfbb0]: Removing ciphersuite: SRP_SHA_3DES_EDE_CBC_SHA1

GNUTLS: EXT[acfbb0]: Sending extension CERT_TYPE

GNUTLS: HSK[acfbb0]: CLIENT HELLO was send [88 bytes]

GNUTLS: REC[acfbb0]: Sending Packet[0] Handshake(22) with length: 88

GNUTLS: ASSERT: gnutls_cipher.c:205

GNUTLS: REC[acfbb0]: Sent Packet[1] Handshake(22) with length: 93

GNUTLS: ASSERT: gnutls_buffers.c:638

GNUTLS: ASSERT: gnutls_record.c:909

GNUTLS: ASSERT: gnutls_buffers.c:1152

GNUTLS: ASSERT: gnutls_handshake.c:1032

GNUTLS: ASSERT: gnutls_handshake.c:2331

**** gnutls_handshake: A TLS packet with unexpected length was received.

---- Closing control socket

ls: Fatal error: gnutls_handshake: A TLS packet with unexpected length was received.

使用PHP我得到如下:

Warning: ftp_login(): SSL/TLS handshake failed in /home/user/ftp.php on line 7

Warning: ftp_login(): SSL enabled start the negotiation in /home/user/ftp.php on line 7

cannot login

6号线:$connect = ftp_ssl_connect("server.net") or die("cannot connect");

line 7:$result = ftp_login($connect,"my-username","my-password") or die("cannot login");

使用FTP-SSL:如果

$ ftp-ssl -d -z debug server.net

SSL_DEBUG_FLAG on

Connected to server.net.

220-Security Notice

220-All activities may be monitored. System use indicates consent to

220 monitoring. Information may be given to law enforcement.

ftp: setsockopt: Bad file descriptor

Name (server.net:user): my-username

---> AUTH SSL

234 SSL enabled start the negotiation

write to 0x68c190 (102 bytes => 102 (66))

0000 - 80 64 01 03 01 00 4b 00-00 00 10 00 00 39 00 00 .d....K......9..

0010 - 38 00 00 35 00 00 16 00-00 13 00 00 0a 07 00 c0 8..5............

0020 - 00 00 33 00 00 32 00 00-2f 03 00 80 00 00 05 00 ..3..2../.......

0030 - 00 04 01 00 80 00 00 15-00 00 12 00 00 09 06 00 ................

0040 - 40 00 00 14 00 00 11 00-00 08 00 00 06 04 00 80 @...............

0050 - 00 00 03 02 00 80 e9 28-25 ed ea 2d e4 d2 f2 25 .......(%..-...%

0060 - 80 e1 2e f1 c3 71 .....q

read from 0x68c190 (7 bytes => -1 (FFFFFFFFFFFFFFFF))

ftp: SSL_connect error error:00000000:lib(0):func(0):reason(0)

: Connection reset by peer

对不起这个职位是漫长的,但我一直在看不到答案google搜索了好几天。只希望我错过的一些调试信息可能对某人有用。

2010-07-27

bawkstoo

Ems Yan
关注
  • 0
    点赞
  • 0
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
extract-tls-secrets:使用Wireshark快速解密HTTPSTLS连接
05-07
然后通过以下两种方式之一将其附加到Java进程:启动时附加将启动参数添加到JVM选项: -javaagent:<path>/extract-tls-secrets-4.0.0.jar=<path> 例如,要从jar文件启动应用程序,请运行: java -javaagent: ~ /...
tls-shunt-proxy:分流 TLS 流量,支持按 sni 分流,分流 http 和无特征流量
04-23
(curl -L -s https://raw.githubusercontent.com/liberal-boy/tls-shunt-proxy/master/dist/install.sh)配置文件位于 /etc/tls-shunt-proxy/config.yaml其他平台需自行编译安装使用命令行参数: -config string Path...
【小坑】lftp 登录 vsftp+tls/ssl 报错(Fatal error: gnutls_handshake: An unexpected TLS packet was received. )
skv00d00的博客
03-14 3247
背景:前两天搭建了一个vsftpd+TLS/SSL ,发现用filezilla可以登录,但是用lftp -u "user","pswd" ftps://ipaddr:port的登录方式或者 lftp ftps://user@ip:port 时一直出现 Fatal error: gnutls_handshake: An unexpected TLS packet was received. 后来偶然间发现分步骤执行登录程序就没有这样的报错 1. lftp 2. open 192.168.31.
图解http协议 部分笔记
Yeira的博客
07-24 2212
web及网络基础 应用层 传输层 网络层 链路层 负责传输的ip协议 确保可靠性的TCP 负责域名解析的DNS ip为网络层 ip地址指明了结点被分配到的地址 mac地址是指网卡所属的固定地址 两者进行配对 ip地址可以变换,mac地址基本不会更改 ARP 是一种用以解析地址的协议,根据通信方 的 IP 地址就可以反查出对应的 MAC 地址。 TCP位于传输层 TCP三次握手 握手过程中使用了 TCP 的标志(flag) —— SYN(synchronize) 和 ACK(acknowledgement)。
FTPS“严重错误: gnutls_handshake: A TLS fatal alert has been received.”
csuk022288的博客
03-26 2707
前不久遇到一个问题,使用FTPS下载文件时报错: cd: 严重错误: gnutls_handshake: A TLS fatal alert has been received. mget: 严重错误: gnutls_han...
解决 GnuTLS recv error (-110): The TLS connection was non-properly terminated
张屹的博客
08-11 3953
解决方法一: 可以参考以下链接:https://www.pianshen.com/article/1111158650/ 解决方法二: 使用 Chrome 并安装:https://chrome.google.com/webstore/detail/github%E5%8A%A0%E9%80%9F/mfnkflidjnladnkldfonnaicljppahpg?hl=zh-CN 打开需要 clone 的仓库,用以下链接替换之前的链接: P.S. 其实这里也可以不安装这个插件,将 GitHub 的链接替换为
A TLS packet with unexpected length was received 解决方法
weixin_30411819的博客
02-22 3498
参考:A TLS packet with unexpected length was received. 系统环境 主系统 OS X,虚拟机 Ubuntu 14.04 64bit。 问题描述 在git clone时遇见错误: ··· A TLS packet with unexpected length was received 解决方法 a.回答1 sudo apt-get install bu...
private-tls-cert:一个简单的Terraform模块,用于生成供私人使用的自签名TLS证书
02-04
private-tls-cert:一个简单的Terraform模块,用于生成供私人使用的自签名TLS证书
rust-tls-api:用于Rust的TLS API,以及在单独包装箱中通过native-tls和openssl进行的API实现
02-18
api-schannel —在板条箱上缺少TLS API的实现tls-api-security-framework —在箱上缺少TLS API的实现tls-api-stub —存根API实现,该函数对任何操作均返回错误问题如果您开发一个库,则不知道用户要使用哪个TLS库,...
awesome-tls-hacks:SSLTLS 安全相关资源的集合
05-30
很棒的 SSL/TLS 黑客内容OpenSSL 漏洞工具模糊测试编程扫描其他词汇表 SSL/TLS 协议历史协议名称发布日期作者RFC SSL 1.0 不适用网景不适用SSL 2.0 1995年网景不适用SSL 3.0 1996年网景不适用TLS 1.0 1999-01 IETF ...
svn 同步备份的所有问题,亲测可用
weixin_30763455的博客
07-03 945
svnsync异地同步收获 (2010-07-06 10:06:19) 转载▼ 标签: 杂谈 分类:svn svnsync 异地同步收获: 来自:我用Subversion -http://www.iusesvn.com/&&http://dev.10086.cn/cmdn/bbs/thread-1...
知识回顾:TLS协议简介
北欧巨墙
10-12 404
TLS协议 1.TLS协议涉及目标 a.密码学的方法论(科学与工程的区别) b.TLS设计目标包括,密码学安全性,即保密、完整性、认证;互操作性、通用性;可扩展性;高效率 c.TLS发展历史, 1995年 SSL2.0 1996年 SSL3.0 2006年 TLS1.1 2008年 TLS1.2 2015年 TLS1.3 2.TLS...
【CondInst】 の 填坑指南
墨瞳的Blog
01-22 1617
问题1:gnutls_handshake() failed: A TLS packet with unexpected length was received. fatal: unable to access ‘https://github.com/facebookresearch/detectron2.git/’: gnutls_handshake() failed: A TLS packet with unexpected length was received. 解决方案: 执行以下代码: git
错误: RPC failed; curl 56 GnuTLS recv error (-9): A TLS packet with unexpected length was received.
希希雾里
03-21 1099
imx6ull pro下载BSP文件以及配置工具链--repo问题
解决git gnutls_handshake失败
热门推荐
dean_yanqing的专栏
06-12 2万+
http://askubuntu.com/questions/186847/error-gnutls-handshake-falied-when-connecting-to-https-servers
Git:gnutls_handshake() failed: A TLS packet with unexpected length was received
挑灯看剑的博客
06-19 5192
Q: git 克隆代码时报错, gnutls_handshake() failed: A TLS packet with unexpected length was received A: 链接:https://askubuntu.com/questions/186847/error-gnutls-handshake-failed-when-connecting-to-https-servers/187199#187199 解决步骤如下 1.重新编译,注意修改为你下载的对应版本号 sudo apt-ge
git clone报错
weixin_45961921的博客
04-03 240
想从github获取一个开源的项目,但是报错gnutls_handshake() failed: A TLS packet with unexpected length was received.网络环境是正常的,通过查看其他博主的文章,推测是代理问题,需要设置取消代理,我在尝试去掉https中的s,改为http后,clone成功。
面试总结(二)
挑灯看剑的博客
04-01 163
7.迭代器和生成器的区别。
移植curl但是zlib无法使能,如何解决该问题 Host setup: arm-unknown-linux-gnueabihf Install prefix: /opt/rootfs/curl-7.79.0/curl-7.79.0/_install Compiler: arm-linux-gnueabihf-gcc CFLAGS: -Werror-implicit-function-declaration -O2 -Wno-system-headers -pthread CPPFLAGS: -isystem /opt/rootfs/openssl-1.1.1/openssl-1.1.1/_install/include LDFLAGS: -L/opt/rootfs/openssl-1.1.1/openssl-1.1.1/_install/lib LIBS: -lssl -lcrypto -ldl -lpthread curl version: 7.79.0 SSL: enabled (OpenSSL) SSH: no (--with-{libssh,libssh2}) zlib: no (--with-zlib) brotli: no (--with-brotli) zstd: no (--with-zstd) GSS-API: no (--with-gssapi) GSASL: no (libgsasl not found) TLS-SRP: enabled resolver: POSIX threaded IPv6: enabled Unix sockets: enabled IDN: no (--with-{libidn2,winidn}) Build libcurl: Shared=yes, Static=yes Built-in manual: enabled --libcurl option: enabled (--disable-libcurl-option) Verbose errors: enabled (--disable-verbose) Code coverage: disabled SSPI: no (--enable-sspi) ca cert bundle: no ca cert path: no ca fallback: no LDAP: no (--enable-ldap / --with-ldap-lib / --with-lber-lib) LDAPS: no (--enable-ldaps) RTSP: enabled RTMP: no (--with-librtmp) PSL: no (libpsl not found) Alt-svc: enabled (--disable-alt-svc) HSTS: enabled (--disable-hsts) HTTP1: enabled (internal) HTTP2: no (--with-nghttp2, --with-hyper) HTTP3: no (--with-ngtcp2, --with-quiche) ECH: no (--enable-ech) Protocols: DICT FILE FTP FTPS GOPHER GOPHERS HTTP HTTPS IMAP IMAPS MQTT POP3 POP3S RTSP SMB SMBS SMTP SMTPS TELNET TFTP Features: AsynchDNS HSTS HTTPS-proxy IPv6 Largefile NTLM NTLM_WB SSL TLS-SRP UnixSockets alt-svc
最新发布
06-13
根据你提供的信息,发现curl编译时未启用zlib支持。可以尝试用以下方式解决该问题: 1. 确认已经安装了zlib库和头文件。 2. 在编译curl时,添加 --with-zlib 选项启用zlib支持。如: ``` ./configure --with-zlib=/path/to/zlib ``` 其中 /path/to/zlib 是 zlib 库的安装路径。 3. 如果上述方法仍然无法解决问题,可以尝试手动设置 CPPFLAGS 和 LDFLAGS 变量,指定 zlib 头文件和库的路径。如: ``` export CPPFLAGS="-I/path/to/zlib/include" export LDFLAGS="-L/path/to/zlib/lib" ./configure ``` 如果仍然无法解决问题,可以尝试升级或重新编译 zlib 库。

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值