Does .NET FtpWebRequest Support both Implicit (FTPS) and explicit (FTPES)?

by

as far as I know the current (.NET 2.0 and 3.5) version of FtpWebRequest supports Explicit SSL only.

Actually, .NET 2.0 does not currently
support implicit SSL, only explicit.
We will consider adding this for a
future release.

JonCole – MSFTModerator at MSDN forum post

If you need to use both Implict and Explicit TLS/SSL you have to try one of third-party FTP/SSL components. Following code uses our Rebex FTP/SSL and is taken from the tutorial page.

Explicit TLS/SSL

Client connects to FTP server in a usual non-protected way, usually to port 21 was assigned to FTP protocol. When it is desired to protect the connection using SSL, an SSL negotiation is initialized, control connection is secured and all following communication is being protected.

// Create an instance of the Ftp class. 
Ftp ftp = new Ftp();

// Connect securely using explicit SSL. 
// Use the third argument to specify additional SSL parameters. 
ftp.Connect(hostname, 21, null, FtpSecurity.Explicit);

// Connection is protected now, we can log in safely. 
ftp.Login(username, password);

Explicit protection means that it is possible to secure the connection at any moment. If you don’t know whether you will need the protection on not at the connection time, you might want to connect using the ordinary unencrypted FTP protocol and secure the connection later. 

Ftp ftp = new Ftp();

// Connect to the server with no protection. 
ftp.Connect(hostname, 21);

// Upgrade connection to SSL. 
// This method also accepts an argument to specify SSL parameters. 
ftp.Secure();

// Connection is protected now, we can log in safely. 
ftp.Login(username, password);

Implicit SSL protection of the FTP session

FTPS protocol was originally assigned a separate port by the IANA. Upon connection to this port, an SSL negotiation starts immediately and the control connection is secured. All data connections are also secured implicitly in the same way. This is similar to the approach used by HTTPS.

This approach is not favored by the IETF and is deprecated. It is supported by Rebex FTP/SSL for interoperability with older servers, but it is strongly recommended to use the explicit protection instead whenever possible.

Ftp ftp = new Ftp();

// Connect securely using implicit SSL. 
// Use the third argument to specify additional SSL parameters. 
ftp.Connect(hostname, 990, null, FtpSecurity.Implicit);

// Connection is protected now, we can log in safely. 
ftp.Login(username, password);

You may download the component at rebex.net/ftp-ssl.net/

More Related Contents:

  1. C# Download all files and subdirectories through FTP
  2. Upload and download a file to/from FTP server in C#/.NET
  3. C# class to parse WebRequestMethods.Ftp.ListDirectoryDetails FTP response
  4. How to check if file exists on FTP before FtpWebRequest
  5. “Requested URI is invalid” during upload with FtpWebRequest
  6. FtpWebRequest FTP download with ProgressBar
  7. Upload file on FTP
  8. FtpWebRequest returns error 550 File unavailable
  9. How to download FTP files with automatic resume in case of disconnect
  10. FtpWebRequest Download File
  11. How to check if an FTP directory exists
  12. Output log using FtpWebRequest
  13. Parsing FtpWebRequest ListDirectoryDetails line
  14. How can we show progress bar for upload with FtpWebRequest
  15. Upload file to FTP using C#
  16. Upload file and download file from FTP
  17. How do I create a directory on FTP server using C#?
  18. FTP directory partial listing with wildcards
  19. Can connect to FTP using FileZilla or WinSCP, but not with FtpWebRequest or FluentFTP
  20. Retrieving creation date of file (FTP)
  21. How to List Directory Contents with FTP in C#?
  22. Can’t connect to FTP: (553) File name not allowed
  23. How to send arbitrary FTP commands in C#
  24. How to loop through all enum values in C#? [duplicate]
  25. Why is a Dictionary “not ordered”?
  26. Timezone Abbreviations
  27. How to send an email in .Net according to new security policies?
  28. Last and LastOrDefault not supported
  29. How to make a button appear as if it is pressed?
  30. Is int? thread safe?

Leave a Comment