FTP over TLS

C

Carl Waldbieser

Does anyone know of any good examples for writing client side code to upload
files over a secure FTP connection? I am referring to FTPS, *not* SFTP,
which I found out the hard way are two different things. I am not really
all that familiar with FTPS, but from what I understand, when the client
sends the "AUTH" command, it can request a TLS connection from the server.

I wasn't sure how to do this in Python, and Googling around didn't really
produce any useful Python-related results for me.

Also, is there an independent FTPS client for Linux I could use for testing
purposes?

Thanks.
 
P

Paul Rubin

Carl Waldbieser said:
Does anyone know of any good examples for writing client side code
to upload files over a secure FTP connection? I am referring to
FTPS, *not* SFTP, which I found out the hard way are two different
things. I am not really all that familiar with FTPS, but from what
I understand, when the client sends the "AUTH" command, it can
request a TLS connection from the server.
Click to expand...

The standard is not yet finalized:
ftp://ftp.rfc-editor.org/in-notes/rfc4217.txt
I wasn't sure how to do this in Python, and Googling around didn't really
produce any useful Python-related results for me.
Click to expand...

I don't know of any Python code that does it. You could adapt the
existing Python ftp client to use one of the Python TLS packages.
 
D

Dima Barsky

Carl Waldbieser said:
Does anyone know of any good examples for writing client side code
to upload files over a secure FTP connection? I am referring to
FTPS, *not* SFTP, which I found out the hard way are two different
things.
Click to expand...

Look at the CURL library, the manual says it supports FTPS, although I
have not tried it myself:

http://curl.haxx.se/libcurl/python/

Hope it helps,
Dima.
 
C

Carl Waldbieser

David said:
http://trevp.net/tlslite/

Alan Isaac
Click to expand...

Thanks. I have actually looked at this library before. It looks like it
might be able to do what I want, but my problem is that I don't really
understand how the protocol itself works very well. I mean, from a high
level view, I thing something like this happens:

1) FTP client contacts server, sends command requesting secure connection.
2) Server responds by sending some sort of public key
3) Client uses key to encrypt the rest of the communication.

I don't really understand the nitty-gritty of what's going on, though. I
can read the API for the library, but I am really lost as to how to use it.

I didn't see any docs on the site that clarify how it's supposed to be used.
Did I miss something? Is there somewhere else I should be looking?

Thanks
 
A

adam

I'm not 100% sure whether this answers your problem, but I would ignore
getting a special TLS module and just concentrate on the ftp side of
the protocol. If your connection to your ftp server must be in TLS, you
could modify you socket module similar to how I have using this diff
(against 2.3.4) as inspiration.

http://www.ninjatactics.com/python/ssl-patch.txt

This way, you only need to worry about one thing, not two. I suspect
then your program flow would become
1) FTP client contacts server, sends command requesting secure
connection.
2) Server responds by sending some sort of request for SSL
3) SSL your socket to the FTP server
4) Continue on your merry FTP way.

-adam
 
P

Paul Rubin

adam said:
I'm not 100% sure whether this answers your problem, but I would ignore
getting a special TLS module and just concentrate on the ftp side of
the protocol. If your connection to your ftp server must be in TLS, you
could modify you socket module similar to how I have using this diff
(against 2.3.4) as inspiration.
Click to expand...

You could also use something like stunnel (www.stunnel.org) as an
external tunnel to wrap TLS around the connection.
 
C

Carl Waldbieser

Dima said:
Look at the CURL library, the manual says it supports FTPS, although I
have not tried it myself:

http://curl.haxx.se/libcurl/python/

Hope it helps,
Dima.
Click to expand...
That did the trick. pycurl was a little trickier to use than say, urllib,
but it got the job done. I am going to look into some of the other options
folks mentioned as well, as many of them seemed interesting.

Thanks to everyone who helped!
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Trouble connecting with ftp... tls error 1
FTP over TLS 0
FTPS ( FTP over SSL) Problem with Python's builtin SSL 2
[ANN] Python FTP Server library (pyftpdlib) 0.5.1 released 0
[M2Crypto] Problems uploading to IIS using FTP over SSL 1
[M2Crypto] Problems uploading to IIS using FTP over SSL 0
How can I upload a tar.bz2 file to OpenStack swift object storage container using the Python swift client? 1
Python FTP timeout value not effective 3

Members online

No members online now.
Total: 25 (members: 0, guests: 25)
Robots: 454

Forum statistics

Threads
473,768
Messages
2,569,574
Members
45,051
Latest member
CarleyMcCr

Latest Threads

Top