php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login

go to bug id or search bugs for

Request #52178 Enable CCC function on ftp_ssl_connect
Submitted: 2010-06-25 00:15 UTC Modified: -
Votes:9
Avg. Score:4.7 ± 0.7
Reproduced:9 of 9 (100.0%)
Same Version:8 (88.9%)
Same OS:7 (77.8%)
From: jeff dot wolkove at shps dot com Assigned:
Status: Open Package: FTP related
PHP Version: 5.3.2 OS: Linux
Private report: No CVE-ID: None
View Developer Edit
 [2010-06-25 00:15 UTC] jeff dot wolkove at shps dot com 
Description:
------------
Encrypted connections do not work well with stateful firewalls. This is because firewalls intercept PORT and PASV commands sent through the control connection in order to open a port for the data connection. Since the control connection is encrypted, the firewall cannot see which port the server or client have negotiated for the data connection.

The CCC command (clear control channel) is supposed to facilitate this. It is issued after the connection is made, and user ID's and passwords have been exhanged over the encrypted connection. After the CCC is issued the control channel is no longer encrypted, but the data connection is.

Issuing a ftp_raw command with "CCC" as the argument is not sufficient. This tells the remote server that the control channel has been cleared, however in fact, the PHP client is still encrypting it.

Please enable CCC functionality. One way of doing this is to add an optional parameter on the ftp_ssl_connect function that clears the control connection after the connection is negotiated with the remote site.

Patches

Pull Requests

History

AllCommentsChangesGit/SVN commitsRelated reports
 [2023-02-01 16:25 UTC] xamres dot com at gmail dot com 
Thanks for the patch. Enabled CCC functionality and it worked.
(https://xamres.com/).github.com
(https://xamres.com/how/cuims-login-uims-cuchd-in/).php.net
 
PHP Copyright © 2001-2025 The PHP Group
All rights reserved. 		Last updated: Tue Nov 04 07:00:01 2025 UTC