LISTSERV - HP3000-L Archives

HP3000-L Archives

September 2003, Week 2

HP3000-L@RAVEN.UTC.EDU

	LISTSERV Archives
	HP3000-L Home
	HP3000-L September 2003, Week 2

	Log In
	Register

	Subscribe or Unsubscribe

	Search Archives

Options:	Use Monospaced Font Show Text Part by Default Show All Mail Headers
Message:	[<< First] [< Prev] [Next >] [Last >>]
Topic:	[<< First] [< Prev] [Next >] [Last >>]
Author:	[<< First] [< Prev] [Next >] [Last >>]

Subject:	FTP IP addressing bug?
From:	Patrick Santucci <[log in to unmask]>
Reply To:	Patrick Santucci <[log in to unmask]>
Date:	Fri, 12 Sep 2003 17:00:28 -0400
Content-Type:	text/plain
Parts/Attachments:	text/plain (77 lines)

Hey -L,

Just ran across something really strange with FTP. We were trying to
prevent a job from overwriting data on one of our servers during
testing, so I changed the IP address to something invalid to make FTP
fail. Except it *didn't* fail on the IP address as expected, but
(fortunately) on the user name and password. Here's what it did:

  File Transfer Protocol [A0010L09] (C) Hewlett-Packard Co. 2000
[PASSIVE SUPPORT]
  ftp> EXITONERROR
  ExitOnError mode on.  (FTPINFO 33)
  ftp> OPEN 172.18.1.257                       <-- Invalid IP address...
  220-QTCP at ccsg-as400-extol.ccsg.cbi.intl.  <-- Found an FTP server!
  220 Connection will close if idle more than 5 minutes.
  Connected to 172.18.1.257.  (FTPINFO 40)     <-- Invalid, but
connected!
  ftp> USER XSFTP09 ********
  331 Enter password.
  530 Log on attempt by user XSFTP09 rejected.
  FTP/XL Unknown Error Detected.  Error = -65
  221 QUIT subcommand received.

The *really* interesting thing is that the machine FTP supposedly found
at 172.18.1.257 is actually at 172.18.1.1. Apparently, rather than
rejecting 257 as an invalid octet like PING, TRACERT, and NSLOOKUP do,
FTP "wrapped" the address above 255 and calculated an address of 1.

Furthermore, the behavior is consistent. I can connect to another of our
HP3000 systems by adding 256 to *each* octet, and the FTP software
reports that I'm connected to 428.274.257.322!

  989-250 [/SYS/MGRSYS] 
  {107}:ftp ![172+256].![18+256].![1+256].![66+256]
  File Transfer Protocol [A0010L09] (C) Hewlett-Packard Co. 2000
[PASSIVE SUPPORT]
  220 HP ARPA FTP Server [A0010L09] (C) Hewlett-Packard Co. 2000 [PASV
SUPPORT]
  Connected to 428.274.257.322.  (FTPINFO 40)  <-- Invalid, but
connected!
  Name(psantucc): psantucc.sys
  331 Password required for PSANTUCC.SYS.  Syntax: userpass,acctpass
  Password: 
  230 User logged on
  Remote system type is MPE/iX
  200 TIMEOUT command ok.
  ftp> status
  Connected to 428.274.257.322.  (FTPINFO 40)  <-- Invalid, but
connected!
  <rest of output snipped>

We're on MPE 6.5 PP3+, our latest FTP patch is FTPGDY7A (L2 patch).

Anyone else ever run into this? Have I found a bug in FTP? If so I'd be
curious to know how long how it's been there. Or is this somehow
considered a "feature"? AFAIK this is *not* standard behavior with other
FTP clients. ;-)

Thanks,
Patrick
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Patrick Santucci
HP e3000 Systems Administrator
   *** I want my MPE!! ***
Computer Operations Team Lead
Networking Services Department
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Cornerstone Brands, Inc.
5568 West Chester Rd.
West Chester, OH  45069-2914
phone: (513) 603-1138

http://cornerstonebrands.com

* To join/leave the list, search archives, change list settings, *
* etc., please visit http://raven.utc.edu/archives/hp3000-l.html *

ATOM RSS1 RSS2

RAVEN.UTC.EDU