FTPS(FTP+SSL)/ u$ P1 H! T% v
7 g0 W4 Y7 \. W" q; W# f! K( f5 f
ftps是一种多传输协议,相当于加密版的FTP。当你在FTP服务器上收发文件的时候,你面临两个风险。第一个风险是在上载文件的时候为文件加密。第二个风险是,这些文件在你等待接收方下载的时候将停留在FTP服务器上,这时你如何保证这些文件的安全。你的第二个选择(创建一个支持SSL的FTP服务器)能够让你的主机使用一个FTPS连接上载这些文件。这包括使用一个在FTP协议下面的SSL层加密控制和数据通道。一种替代FTPS的协议是安全文件传输协议(SFTP)。这个协议使用SSH文件传输协议加密从客户机到服务器的FTP连接。
: v3 L. E( R2 Y) q* S5 Q/ M" f; M* S5 f3 a4 C; I% i; x
8 f) I8 W4 R) [! h: B4 a9 X
FTPS是在安全套接层使用标准的FTP协议和指令的一种增强型TFP协议,为FTP协议和数据通道增加了SSL安全功能。FTPS也称作“FTP-SSL”和“FTP-over-SSL”。SSL是一个在客户机和具有SSL功能的服务器之间的安全连接中对数据进行加密和解密的协议。
+ m( N% k5 W6 `2 T% }$ @
, e- {7 s# A5 |: R 4 w" w5 |2 s" u7 g' J4 ~
和sftp连接方法类似,在windows中可以使用FileZilla等传输软件来连接FTPS进行上传,下载文件,建立,删除目录等操作,在FileZilla连接时,有显式和隐式TLS/SSL连接之分,连接时也有指纹提示。& D0 M) y" ]6 P# i. ?
/ o, b: v& _ @1 ?. S* b
2 w; s( k) ?1 F' [- n
4 z# ^. v- K, g9 Z0 I安全:ftps ftp+ssl. }4 i# l7 r6 `9 U
$ v$ X" d9 d8 J' ], M8 F( }# _1 M准备工作:
R" p- {+ b# s" I3 k; w2 B+ i; f6 `0 c$ U k3 s" n; E
准备一:关闭防火墙;
C4 t; |/ M% Q" P: F4 G. o. G
准备二:挂载光盘;# F y1 `% _3 J
: _/ e$ \- q9 _7 x- w3 `准备三:构建本地yum服务器。
5 x+ r1 B0 B: y' ?/ P1 d$ V& T# Q f( y" Q( |
FTP+SSL配置详细过程:. y a: C- \0 s: ^
8 k) b3 N+ f: v# u
①.安装配置FTP服务器和抓包工具:(ftp:192.168.101.210)
- M7 u+ o1 t }2 t& S, T( u( ?. m% q( C4 P2 b9 d/ V2 `. g8 d
[root@ftp ~]# yum list all |grep vsftpd
4 n( {0 S8 c5 l9 I[root@ftp ~]# yum install -y vsftpd
$ }* B. B# s4 B8 \& D- R* ^
- ^$ ~% l; K" g( h( Y1 M/ H/ U" j) N[root@ftp ~]# yum list all |grep wireshark
. D3 B! _5 z: V p1 l5 x1 o6 R3 F) g( `) g* M- u
[root@ftp ~]# yum install -y wireshark
+ N+ z+ H( z! _1 s1 S9 b- M. J) z8 x. x% S, \0 i' s! m
[root@ftp ~]# useradd user11 S1 `( k+ |. f# P: U' i
[root@ftp ~]# echo "123" |passwd --stdin user1
9 [8 T7 w3 ^3 o8 S
" {' M y6 y- c! ]% c2 P7 L[root@ftp ~]# service vsftpd start6 j& A) |. ~; x" N6 C" @2 }% A9 l
# z$ B# z1 W- n/ M( K; j0 S. yStarting vsftpd for vsftpd: [ OK ]6 \; M3 z1 G F; o
6 ]$ [3 k9 M) q! \& ^& c
# u( _, \7 j( L4 O[root@ftp ~]# tshark -ni eth0 -R "tcp.dstport eq 21"6 b' q1 }+ W' g+ ?. b1 m
\' [9 H+ t* F& X- P: W
1 z0 z7 d8 x* r+ Y. {$ _) h1 l
1 f7 w2 q) [( B5 L5 d m& g②.配置本地CA证书服务器:0 J+ Y. H$ ]( R+ b) u% S: S+ s' q
& j; z7 a) u5 h. i. M% a
[root@ftp ~]# cd /etc/pki/! i/ S7 g/ s0 y5 N2 B( {4 g1 f( |$ R
[root@ftp pki]# ll) f7 ?* f6 t8 A: `
[root@ftp pki]# vim tls/openssl.cnf( c& P9 D- }; _" w2 L
45 dir = /etc/pki/CA" ~6 I7 ~0 j) w
88 countryName = optional
! C2 |5 w9 \: P# d
: F# p7 Q( o7 E) T89 stateOrProvinceName = optional
$ ]: U a% Z) ] C2 w! b5 D) |& _
% Q" j1 H+ ^' T; M8 y+ @90 organizationName = optional
) O3 b# y1 k# t0 z
+ a# b- k) @% L6 t6 x; X v8 j[root@ftp pki]# cd CA/
' m y) s- z* E5 ^* b* _[root@ftp CA]# mkdir certs newcerts crl- E: ~; Y' A. m; ?+ S b; w0 w5 P) F
[root@ftp CA]# touch index.txt serial
9 o% i6 g' g+ o, }, ^% i[root@ftp CA]# echo "01" >serial0 o9 S8 Q8 s0 P; q$ G% J
) ] H9 t0 H, l _
[root@ftp CA]# ll4 c1 ^3 u8 m6 ]! M- _
[root@ftp CA]# openssl genrsa 1024 > private/cakey.pem5 y- z% ]# }. q& X$ B" f, [
, P' O! z- O0 o7 D7 w2 I
Generating RSA private key, 1024 bit long modulus
0 N% V* X; D; X9 e+ C, K( W7 k, t7 B% v& N7 v% J4 E3 f
...........++++++
4 V/ A5 x, ^! Y) y, I- v....++++++7 ^; N% J) P, G1 `, Y
e is 65537 (0x10001)
+ u7 E4 S# j% t+ o. b$ y+ w" y2 y O7 W
[root@ftp CA]# chmod 600 private/cakey.pem0 a; _3 J% j! ?) Z$ v/ O
[root@ftp CA]# ll private/cakey.pem
- t7 U; [% U7 }/ o-rw------- 1 root root 887 Feb 10 23:22 private/cakey.pem$ z. m' s* q3 S3 ]! O! ~
[root@ftp CA]# openssl req -new -x509 -key private/cakey.pem -out cacert.pem -days 3650 u+ u5 O3 \8 f3 \
8 I9 D3 w/ E0 I3 B' y5 cYou are about to be asked to enter information that will be incorporated
v: |& J' f5 {: Z+ K
7 _& `4 x6 O& _ G9 ]into your certificate request.: W' @% T6 ?( M2 w
7 [4 w, C$ v8 {What you are about to enter is what is called a Distinguished Name or a DN.6 s6 l# J& K/ W H+ D% y3 q
3 @! g! W$ A/ w* s6 GThere are quite a few fields but you can leave some blank4 D8 P: @ h$ j% Q% ]
b1 c( v) [, Q( ]7 t
For some fields there will be a default value,
$ o$ G. b' t8 G' e. H$ r$ U, Z5 J' H3 a- r
If you enter '.', the field will be left blank.
- z' z" P7 E3 F( p+ j: D! p& E2 M+ J/ H% s5 C2 h/ |& c
-----1 Q6 I5 r5 ` ?
Country Name (2 letter code) [GB]:cn
$ s% z3 [3 [+ d- U8 w" A( m7 {6 w# T7 J2 O
State or Province Name (full name) [Berkshire]:henan( A y3 h) ? T0 [
2 K) O' {( k1 xLocality Name (eg, city) [Newbury]:zhengzhou
1 b/ ~/ {& m6 ?2 F1 X9 U5 z4 L; \$ u4 T
Organization Name (eg, company) [My Company Ltd]:junjie
% g. S" b2 ]7 i8 o/ H5 y" E+ D' ~( b+ e; L5 z& Y8 c# o9 }0 U
Organizational Unit Name (eg, section) []:soft. Z3 E4 ]- ?7 h( `" w% x3 s5 S
4 T7 H2 @ r7 h& Y
Common Name (eg, your name or your server's hostname) []:ca.junjie.com! L Q7 }0 p! ^3 _
% {. g% W, p1 e F) x
Email Address []:[email protected] i! a2 E- N& o" c7 `6 W/ B- O l
[root@ftp CA]#ll; D4 \2 l+ r5 l' Z
③.为ftp服务器创建证书:
+ y! a6 }. j$ u! K& f
" x5 u: O# f9 }2 n! q[root@ftp CA]# mkdir /etc/vsftpd/certs2 N7 \$ n* b5 N* n2 _
[root@ftp CA]# cd /etc/vsftpd/certs
9 }0 @9 Z3 v' a' e0 @0 Q. S8 L- Y[root@ftp certs]# openssl genrsa 1024 >vsftpd.key
2 u) N3 X2 q7 g# U/ s0 ~' ]3 s7 u( cGenerating RSA private key, 1024 bit long modulus
0 S: z: Y9 H' J0 B( M+ N& L+ Y: X. H4 V- @% \, G
....++++++
# ^5 V" f. z+ g; k S$ e. n$ [...++++++$ K$ ]" u; j4 i3 n1 O: K. q
e is 65537 (0x10001)
( i, Z: o# l% i& W" x+ L
0 ]3 K o5 @: ~# U6 V/ O& x9 x# x[root@ftp certs]# openssl req -new -key vsftpd.key -out vsftpd.csr
; l0 e. g, ~, m
3 {7 f+ {, h- T* mYou are about to be asked to enter information that will be incorporated
! P. P4 j: j$ x$ n9 C' I
* y$ P( Z5 |1 Finto your certificate request.
0 q" J+ x4 [6 I. r( _$ t C, N7 t. \6 b8 F. I# y
What you are about to enter is what is called a Distinguished Name or a DN.
; x) ]9 V5 O! }" M I0 a) O
5 b& O2 }) q) M) |# e( M2 z2 c8 QThere are quite a few fields but you can leave some blank. O& A+ G% R1 D
; b* ^' C+ _0 Z3 D: V2 T! ^For some fields there will be a default value,0 E/ O- }1 u' z0 B4 P
) K1 i1 v4 f {/ Y% H8 e
If you enter '.', the field will be left blank.
; e4 U% S) z' Q) h; D) Z8 i9 I7 Q" d" B' ]5 l
-----
0 B2 X! ] ?/ M( l9 }6 i7 ZCountry Name (2 letter code) [GB]:cn* k; n* _0 h$ c" D0 h! U
7 p* `5 e& J4 {0 JState or Province Name (full name) [Berkshire]:henan9 k7 Y+ r# b2 b
4 ~2 D" X5 e3 K+ o, g% {1 L* V+ |
Locality Name (eg, city) [Newbury]:zhengzhou
, F+ b3 X& g/ e% P& O, Q7 ]5 Z( ~ p. F
Organization Name (eg, company) [My Company Ltd]:junjie
) N/ m: x0 a& A- D8 i7 s: g% w2 [
9 h% s& d1 A5 l: ~, ^Organizational Unit Name (eg, section) []:ftp; V$ F& e" C8 f7 ~( W5 h4 G
2 K; ^" b9 q8 k. R/ yCommon Name (eg, your name or your server's hostname) []:ftp.junjie.com
; G# ~8 r+ c; t! l- k( M
* P5 L% u' j- w; \1 h; zEmail Address []:[email protected]" C, z+ L N3 ` S+ r6 U9 B3 b7 P! i
1 X9 y$ X7 ]& m; A! |0 v9 A! E% hPlease enter the following 'extra' attributes; i0 M: D& z. _8 d" o. P
+ ?: O- _% `" |4 [% o+ a
to be sent with your certificate request4 l0 `/ o& v8 n7 n% f. J: F
2 p5 T3 L$ v. ^A challenge password []:
+ t h1 z8 g- v+ {/ }. M9 B
+ Z0 T6 Q3 s: ]& NAn optional company name []:$ _) N+ X7 b5 N
3 X: C J' i6 B J, [( J, Z[root@ftp certs]# openssl ca -in vsftpd.csr -out vsftpd.crt' f$ F. l1 a9 a" x' }( d1 ]
Using configuration from /etc/pki/tls/openssl.cnf
7 d% Z5 l& @& C: p; H, T {, a% a7 e5 {8 u2 n: u; e
Check that the request matches the signature
% k$ O% E) M: Y. e$ y- P, j* S6 k3 v! ~% j: a1 _, \% Z& }! w
Signature ok, a A" E; U. } E# _& s' Z2 u
Certificate Details:
& K+ l& p+ _1 O! b9 O4 t4 i* F J) M1 |" r w: {
Serial Number: 1 (0x1)
+ F: _ k" g) d" ?1 _ Validity
K; D8 A4 Q0 M; Z' I. | G Not Before: Feb 10 15:48:55 2012 GMT, u. K3 [0 H4 J7 _; _( L. ]% O' N
* P( t5 J1 A" r# L( Y Not After : Feb 9 15:48:55 2013 GMT9 N" ~8 ]* t. i7 H( E1 K2 s
Subject:
& c4 U4 G8 e9 K' j/ n# k countryName = cn3 w5 `3 S, t+ ^8 B* d* ~. R( Z* [
stateOrProvinceName = henan4 w7 h, W. Y( r( p, J9 b- {( C$ D( Q
organizationName = junjie, w) d x$ Z/ ~1 r+ d
organizationalUnitName = ftp/ N$ O C. ]) `4 A5 q
commonName = ftp.junjie.com* Q+ f% @" b8 p' y6 ^3 ]" _0 H
emailAddress = [email protected]# d" }0 v9 n& |
X509v3 extensions:
' q( W. ^7 U2 ?* g4 _, {9 [ X509v3 Basic Constraints:
5 c% ?" Y: f$ f' B& L' y CA:FALSE* I1 k1 V, j8 q$ i
Netscape Comment:
0 r% I. E) O0 Y% R OpenSSL Generated Certificate4 e5 [5 f- \, \6 f
X509v3 Subject Key Identifier:# P* {. Z* ^2 K* Q: |' H
33:C5:01:33:A5:CF:42:9F:24:A9:0D:E9:41:8E:26:C3:1B:7B:18:11. [. Q8 B7 E( z( F2 o2 t, Y
9 b9 u3 h. I5 ]; b
X509v3 Authority Key Identifier:
4 H: U% z) Q: a# u7 Y1 A keyid:50 1:A8:0A:1F:B7:CD:49:94:69:E3:70:E9:AE:93:73:2C:94:66:AC- ^3 }% {& ~3 `( u/ x4 S8 N
3 `( p0 b' `. ?; e5 P$ M
& e: m+ _2 d; gCertificate is to be certified until Feb 9 15:48:55 2013 GMT (365 days)
- _/ U" G: h0 T. R4 C6 m( x ]+ o* ]6 X6 J5 C
Sign the certificate? [y/n]:y
$ O- K3 P, m7 E O0 z2 ]% h- `) @; d8 x3 S* J
2 h! R( f- E; Y3 w: o1 g, A! Q
2 a* B( S: t0 [8 F1 out of 1 certificate requests certified, commit? [y/n]y
. F: t9 G0 w8 d- W
' T: z1 M% T _& mWrite out database with 1 new entries; k0 u2 `" K! d9 ]
3 U5 E9 X( K) a7 p' [5 {6 R( DData Base Updated
. x; Y( f3 u+ ^% i[root@ftp certs]# ll+ d% A6 |$ H$ e7 M
[root@ftp certs]# chmod 600 *
% h7 k* ^) T, E, j$ z+ {" ?. l) @/ o[root@ftp certs]# ll" |) I: \7 f( j2 K V
④.使ftp服务应用证书:" F6 R9 {* s7 w: _" D
' a7 A2 {& W& q3 C4 l/ o[root@ftp certs]# cd /etc/vsftpd/
! r- U! P/ y1 X9 O4 Q7 |: V5 U' H[root@ftp vsftpd]# vim vsftpd.conf #增加以下内容" e7 h w5 b- Y1 r
118 rsa_cert_file=/etc/vsftpd/certs/vsftpd.crt
X) w S4 p% r8 g7 b) v
8 A: h3 C+ N$ y+ T! _2 a7 W119 rsa_private_key_file=/etc/vsftpd/certs/vsftpd.key$ o8 }6 F8 p; o$ b/ Q& t
$ u) G! H! B# E( ~/ f4 c. H
120 force_local_data_ssl=YES& o" K/ d7 s0 F/ k% b
121 force_local_logins_ssl=YES
: Y6 T* w1 y9 {1 a$ I122 ssl_enable=YES
# V9 J0 S$ z* Z4 `' V n' n123 ssl_sslv2=YES
2 @- ~( r/ P! v$ `124 ssl_sslv3=YES8 p( a( L8 m; E
125 ssl_tlsv1=YES
" {% T% x2 ~/ B& h[root@ftp vsftpd]# service vsftpd restart
" X3 m& u# U0 t2 `" x3 c0 w, F. Y5 Q( u1 f0 n: D7 a- p$ o
Shutting down vsftpd: [ OK ]0 K! z, Y: ~& b! R4 V
Starting vsftpd for vsftpd: [ OK ]
7 b+ T3 Z/ _& I5 V⑤客户端测试(已加密传输):
9 z. u, U8 L# u- M6 c% W0 _& R! z0 F! ^1 t K
6 l4 c5 C! _: U! D) z; w: j8 u5 `
- Q5 Q7 m+ N. X+ Q) e
, y- [- d1 L* S f8 w
从上面看出证书名称出现问题,但可是可以使用!选择接收一次!7 Y4 o) c. u1 `: g! A
~2 K4 N- \" Z1 k" ?* Y
/ q% k3 p `6 r1 a7 C8 z$ T, v: w4 u
该次登录抓包内容如下所示:传输已经经过加密!
2 A7 o$ k& [- x3 U. G6 p[root@ftp ~]# tshark -ni eth0 -R "tcp.dstport eq 21"/ j1 a9 U& d7 Z/ l3 L. T) p, n, x, i
# ?5 ^; {1 m/ d2 {$ M5 t0 T* m6 H7 y) f
& |4 i& A9 w( m% L1 e& A6 z) |% z7 p[root@ftp ~]# tshark -ni eth0 -R "tcp.dstport eq 21"- w* W, X( Y% Z: }% ]
7 P) \& s8 I9 i8 z7 K/ G; g
Running as user "root" and group "root". This could be dangerous.; r" A: b4 Q) l# a
! u+ D: r% L- g! m& ?6 w
Capturing on eth0
) o- `+ K4 w3 e$ K
! c2 m% ]- i& w3 R' X# e 9.742109 192.168.101.113 -> 192.168.101.210 TCP 52572 > 21 [SYN] Seq=0 Win=8192 Len=0 MSS=1460 WS=2
, h' z6 L& L: u: ^+ M! c- U( |$ B: M
9.742144 192.168.101.113 -> 192.168.101.210 TCP 52572 > 21 [ACK] Seq=1 Ack=1 Win=65700 Len=0% o5 g# b( \% }: T' ~
5 k2 m* \ z6 m& L+ r5 ?, k8 o8 ~
9.747458 192.168.101.113 -> 192.168.101.210 FTP Request: AUTH SSL% Y2 L/ y2 j# y8 w
# J* T) q/ }7 {& |. T! {& S+ ? 9.755605 192.168.101.113 -> 192.168.101.210 FTP Request: \200\310\001\003\001\000\237\000\000\000 \000\300\024\000\300& y6 `8 Z) P4 r/ M
( I4 A, @ s5 m [4 A8 _ 9.758795 192.168.101.113 -> 192.168.101.210 FTP Request: \026\003\001\000\206\020\000\000\202\000\200n\257\315\204\324o( r ?% z* h1 T
4 S/ v/ H4 m! K6 Q
9.778662 192.168.101.113 -> 192.168.101.210 FTP Request: \027\003\001\000\030\215\325t\357\277\001\376FZ\243D\373\003\367\231\207Q\324\003Q}/\335\025\027\003\001\000 \f\355b\270\355\325\020[\372\302s{^\375\307\364C\307\243\251v9\370\364\260\277\253\317\321gB]
1 j/ @4 F6 ~, S7 C; s1 w# s1 h9 [$ g& \; H
9.779885 192.168.101.113 -> 192.168.101.210 FTP Request: \027\003\001\000\030\324\000\267\312\0320\213\266y\311\025[\371\275?\254Y\257\024[\245vjM\027\003\001\000(\236\321\221Z\321Z(\316'\343.\235?\321=8\264b\270(j\336\231\210\265\207K\223A\037"\277\251\252t\252a`\374
3 d" B( o @/ k0 J! O" ?" @$ \4 W( o. V. k" E# m( E
9.782153 192.168.101.113 -> 192.168.101.210 FTP Request: \027\003\001\000\030\257d\313mXZT\356\2366\334q\223\017gt\371\232\207\226\325
6 F# N; K2 W7 g- H/ [" |9 o c4 K+ s" n/ B) r; V( d
9.793165 192.168.101.113 -> 192.168.101.210 FTP Request: \027\003\001\000\0301\020S\237\372\210\004N4\370\366\377\2213m\356\233w:\275)>@%\027\003\001\000 Y\032\275BM=3J\313\240\241\372Z\371@\335\262\252\240\235\021\345\271\305\223\211\020\340\332\323Q\2512 A* m6 \: ]* I# Y L
3 Q1 |! `& U( o# _4 `) Y( y 9.795630 192.168.101.113 -> 192.168.101.210 FTP Request: \027\003\001\000\030\302\016=LR\272\030{\034\277V\256]\230\247\363\355M\241\327U\207k\032\027\003\001\000 OYi\216=S\322\212)\271V\016\2519w\332f\213\222S\244\275M\316\025N\302:k\312b\3313 i8 @# j9 ? x w
$ r4 Q0 u t7 G$ ~& H* m6 c( Z/ A* i 9.796727 192.168.101.113 -> 192.168.101.210 TCP 52572 > 21 [ACK] Seq=741 Ack=1260 Win=64440 Len=05 ^$ V& P% [' n7 h6 w0 |
& H+ W0 \" o# f0 U
9.797542 192.168.101.113 -> 192.168.101.210 TCP 52572 > 21 [ACK] Seq=741 Ack=1334 Win=64364 Len=0
6 a+ v$ F+ ]9 F# \& e
$ P+ s1 X! }2 w/ {$ S 9.798327 192.168.101.113 -> 192.168.101.210 TCP 52572 > 21 [ACK] Seq=741 Ack=1408 Win=64292 Len=0; I9 n4 v) e$ e0 C1 [) o
' D/ f% k2 e7 K* a; B" W. E 9.798775 192.168.101.113 -> 192.168.101.210 TCP 52572 > 21 [ACK] Seq=741 Ack=1482 Win=65700 Len=0
! g. d3 q% H! F f: |9 C' n; q. n9 I" u8 X9 y* n
9.799387 192.168.101.113 -> 192.168.101.210 TCP 52572 > 21 [ACK] Seq=741 Ack=1564 Win=65616 Len=0- q+ R' }" z" k9 C0 G, a. {/ S
+ N% y3 J+ g0 S9 O
9.799910 192.168.101.113 -> 192.168.101.210 TCP 52572 > 21 [ACK] Seq=741 Ack=1638 Win=65544 Len=0
) }5 ^6 [; A; |$ k# e, h/ {
* p+ Z$ M% x: Z1 P/ V 9.805078 192.168.101.113 -> 192.168.101.210 FTP Request: \027\003\001\000\030G}\305\210\021s\244q\023k=\345R\232A\366B\360\202\320\361(x\344\027\003\001\000 \351W\350\377\362\2756\334\303\035+1l|{\304\277\224\326n\036d\213\217\b\216\023N\225\003a\2745 y1 ]" a. s% V* G6 z
) t7 Y# U9 F4 P' g 9.810763 192.168.101.113 -> 192.168.101.210 FTP Request: \027\003\001\000\030\203\354F\302\253\205\212\355\334$\321=\303h\276\302\350\320.\346\223\337BG\027\003\001\000 73\027\372#\232
- B5 U0 P' @+ W5 H2 M, \0 |) \ N5 x2 f9 I4 X9 \) O* s
9.813350 192.168.101.113 -> 192.168.101.210 FTP Request: \027\003\001\000\030\203x`k\337RM\341w\022N\255|f\260U ?\354)A\301^\251\027\003\001\000 \031`\366\364He\030\266z)\373\265\237\261\3430\220\331\340Kv[\033\347\tXj\344\314\236\242
4 y% V7 Z- I* a' n ?5 n2 Z5 \9 I% r/ f. u
9.814073 192.168.101.113 -> 192.168.101.210 FTP Request: \027\003\001\000\030\307\2126sY\a\237\034\321\277!j\320\213\235\032\277e\345\361E>|)\027\003\001\000 \256\304}:-\365\034\aD~\fk`]\314\b\207\365-\217\305\244& W/ U6 n( l, y$ j8 ]
9 @: i2 F* r" m7 c" a* E# O4 x1 K
9.838659 192.168.101.113 -> 192.168.101.210 FTP Request: \027\003\001\000\030\300\272t&\t(\262\243\361\210\263\343\326\261\017$\317V\002\354\325\271\250\366\027\003\001\000 \350F\305\360\363\365\033\274W\207M\006\216\255\016\365\205z\033\002\032B\345,\3712\034\377\327[\272P
& C5 I; K+ b" [4 q' M2 s! k: Q! O( Y5 Q
9.851675 192.168.101.113 -> 192.168.101.210 TCP 52572 > 21 [ACK] Seq=1071 Ack=2041 Win=65140 Len=0* q# K2 o9 t9 A" Z+ q- ?
5 R3 r5 v7 i1 o0 Z; W2 K5 y& l
9.856073 192.168.101.113 -> 192.168.101.210 FTP Request: \027\003\001\000\030\f\357\000E/\372\333\247\016\344\315\345\346\271L\327\214CE0*i\316\332\027\003\001\000(8\220\341\316.*\234dM\2353 y) H" e" V3 [* `6 j
6 L6 |+ l$ ~3 o6 j; E4 N6 O1 ` 10.061779 192.168.101.113 -> 192.168.101.210 TCP 52572 > 21 [ACK] Seq=1145 Ack=2094 Win=65088 Len=0- C# @8 G; A7 b0 X; ^: _
+ p( x) h; Q! |
39.978110 192.168.101.113 -> 192.168.101.210 FTP Request: \027\003\001\000\030=\032\322\022\216B\025O\016\034
; w6 Y) P7 t' S7 O
+ P2 F; Z( L; V% q: Z) p 39.980672 192.168.101.113 -> 192.168.101.210 TCP 52572 > 21 [FIN, ACK] Seq=1211 Ack=2139 Win=65040 Len=0$ h" _ B; K/ }: C( A; `/ H. r
1 Q; \% R6 a: Y+ S* S1 E 39.980725 192.168.101.113 -> 192.168.101.210 TCP 52572 > 21 [RST, ACK] Seq=1212 Ack=2149 Win=0 Len=0
8 m: j q) w/ @9 n3 f0 k' D# s
27 packets captured! Y0 k5 s# K3 Z+ n# @( Y( I+ z2 G
0 k4 V: r6 K" ^
[root@ftp ~]# |
|手机版|赛格电脑 华强北 电脑城 南山赛格 龙岗电子世界 龙华电脑城 沙井电脑城 松岗电脑城 pc4g.com
( 粤ICP备16039863号 )
发表于 2013-1-22 22:31:55