php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login
Request #52178 Enable CCC function on ftp_ssl_connect
Submitted: 2010-06-25 00:15 UTC Modified: -
Votes:9
Avg. Score:4.7 ± 0.7
Reproduced:9 of 9 (100.0%)
Same Version:8 (88.9%)
Same OS:7 (77.8%)
From: jeff dot wolkove at shps dot com Assigned:
Status: Open Package: FTP related
PHP Version: 5.3.2 OS: Linux
Private report: No CVE-ID: None
Have you experienced this issue?
Rate the importance of this bug to you:

 [2010-06-25 00:15 UTC] jeff dot wolkove at shps dot com
Description:
------------
Encrypted connections do not work well with stateful firewalls. This is because firewalls intercept PORT and PASV commands sent through the control connection in order to open a port for the data connection. Since the control connection is encrypted, the firewall cannot see which port the server or client have negotiated for the data connection.

The CCC command (clear control channel) is supposed to facilitate this. It is issued after the connection is made, and user ID's and passwords have been exhanged over the encrypted connection. After the CCC is issued the control channel is no longer encrypted, but the data connection is.

Issuing a ftp_raw command with "CCC" as the argument is not sufficient. This tells the remote server that the control channel has been cleared, however in fact, the PHP client is still encrypting it.

Please enable CCC functionality. One way of doing this is to add an optional parameter on the ftp_ssl_connect function that clears the control connection after the connection is negotiated with the remote site.



Patches

Add a Patch

Pull Requests

Add a Pull Request

History

AllCommentsChangesGit/SVN commitsRelated reports
 [2023-02-01 16:25 UTC] xamres dot com at gmail dot com
Thanks for the patch. Enabled CCC functionality and it worked.
(https://xamres.com/).github.com
(https://xamres.com/how/cuims-login-uims-cuchd-in/).php.net
 
PHP Copyright © 2001-2024 The PHP Group
All rights reserved.
Last updated: Tue Mar 19 08:01:29 2024 UTC