form as [44]ckcplm.txt.
[45]iksd.html
- Internet Kermit Service Aministrators Guide for Unix.
+ Internet Kermit Service Administrators Guide for Unix.
[46]skermit.html
C-Kermit as an SSH Subsystem (SFTP server replacement).
1858.
+ General:
o "Closing blah..." message upon exit could not be
- surpressed.
+ suppressed.
o Added /PAGE and /NOPAGE to DELETE switches.
o Added GO response for DELETE /ASK (delete all the rest
without asking).
+ Fixed modem-type aliases to not take precedence over real
names.
+ Fixed funny treatment of doublequotes by ECHO command.
- + Enabled SET SESSION-LOG for VMS and other non-UNIX platorms.
+ + Enabled SET SESSION-LOG for VMS and other non-UNIX platforms.
+ Fixed changing direction in command history buffer.
+ Fixed handling of IKSD URLs.
+ Made sure DELETE prints a message if it got any errors.
parameters.
+ We now make every attempt to not write passwords to the
debug.log.
- + New Certficate Authority certificates file, includes the
+ + New Certificate Authority certificates file, includes the
Kermit Project at Columbia University so you can access our
IKSD securely.
+ Secure targets improved and better documented in Unix
+ New command: SET TERMINAL AUTODOWNLOAD { ..., ERROR { STOP,
CONTINUE } }
+ New command: HELP FIREWALL.
- + SET MODEM HANGUP-METHOD DTR added as synomym for RS232-SIGNAL
+ + SET MODEM HANGUP-METHOD DTR added as synonym for RS232-SIGNAL
+ Support for secure URL protocols added: telnets:, ftps:,
https:.
timezone set.
o Allow for alternative server interpretations of [M]MPUT
/UNIQUE.
- o SET FTP ANONOMOUS-PASSWORD lets you specify the default
+ o SET FTP ANONYMOUS-PASSWORD lets you specify the default
anonymous password.
o Allow "GET /RECURSIVE path/file" to force local
subdirectory creation.
file or directory lists, no way to transfer file groups by using
wildcard notation, etc, and therefore no good way to (say) fetch all
pages, descend through subdirectories, perform automatic updates, etc.
- There is no assurrance a connection will stay open and, as noted, there
+ There is no assurance a connection will stay open and, as noted, there
is no provision for data conversion between unlike platforms. The
data's MIME headers can be used for postprocessing.
}
Note that the "Date:" item is the current date and time; the
- "Last-Modifed:" item is the file's modification date and time. An
+ "Last-Modified:" item is the file's modification date and time. An
example showing how to use this information is presented in
[190]Section 8.13.7.
sent to the server.
Kerberos 5:
- Instead of using X.509 certifcates, Kerberos 5 can be used to
+ Instead of using X.509 certificates, Kerberos 5 can be used to
perform the authentication and key exchange. In this situation,
there is mutual authentication between the client and server.
The Kerberos 5 principal is used by the server to look up the
[ [240]Top ] [ [241]FTP Top ] [ [242]C-Kermit Home ] [ [243]Kermit Home
]
+3.1.5. Making Proxy Connections
+
+ The simplist form of firewall traversal is the HTTP CONNECT command.
+ The CONNECT command was implemented to allow a public web server which
+ usually resides on the boundary between the public and private networks
+ to forward HTTP requests from clients on the private network to public
+ web sites. In order to allow secure web connections to be established,
+ the CONNECT command works by authenticating the client with a
+ username/password and then establishing a tunnel to the desired host.
+
+ Many web servers support the CONNECT command and it can be configured
+ to allow outgoing connections to authenticated user to any TCP/IP
+ hostname/port combination accessible to the web server. The limitations
+ of HTTP CONNECT is that it can only be used for outgoing connections
+ for protocols that are implemented using TCP/IP. Protocols such as
+ Kerberos authentication that use UDP/IP cannot be tunneled using HTTP
+ CONNECT.
+
+ Kermit provides support for the use of HTTP CONNECT proxy services with
+ the command:
+
+ SET TCP HTTP-PROXY [/USER:username /PASSWORD:password] hostname/ip-address[:po
+rt]
+
+ When a port is not specified the default port configured on the HTTP
+ server is used. This is frequently port 443. When a hostname is
+ specified, it is resolved using the DNS available to the web server.
+
3.2. Making Secure FTP Connections
Also see: [244]Accessing IBM Information Exchange with Kermit.
SET QUIET { ON, OFF }
This command applies to Kermit in general, not just FTP. OFF by
- default; when ON, it surpresses most messages from most commands
+ default; when ON, it suppresses most messages from most commands
as well as the file-transfer display.
SET FTP PROGRESS-MESSAGES { ON, OFF }
transfer immediately and fail if an error occurs with any single
file in the group. Example: you have given Kermit a list of
files to send, and one of the files can not be found, or read
- permission is denied. Note that cancelling a file by typing 'X'
+ permission is denied. Note that canceling a file by typing 'X'
during transfer is not considered an error (if you want to
cancel the entire transfer, type 'Z' or Ctrl-C).
When used with FTP DELETE, the /RECURSIVE switch deletes files
but not directories, and furthermore depends on the server
providing recursive file lists, which is not the normal
- behavior. For further details, see the decriptions of these
+ behavior. For further details, see the descriptions of these
switches in [274]Section 3.6. Synonyms: FTP MDELETE (Kermit
makes no distinction between DELETE and MDELETE); RDELETE.
A possibly unique feature of Kermit's FTP client is its ability to
convert character sets when transferring files in text mode,
- independent of the capabilites of the FTP server, as well as to
+ independent of the capabilities of the FTP server, as well as to
translate the character sets of filenames regardless of transfer mode.
For compatibility with existing FTP clients, and because there is a
certain performance penalty, Kermit won't do this unless you ask for
during interactive use. However, if you wish to use the shortcuts in a
script, you can do it this way (error handling omitted for brevity):
- local \%t ; Declare a local temporary veriable
+ local \%t ; Declare a local temporary variable
assign \%t \v(ftp_getputremote) ; Save current FTP GET-PUT-REMOTE setting
set ftp get-put-remote ftp ; Choose FTP orientation
ftp xyzcorp.com /anonymous ; Open an FTP connection
3.11. Advanced FTP Protocol Features
- The remainder of the FTP documention (through the end of Section 3) is
- new to C-Kermit 8.0.206, but we leave it in black to prevent headaches.
- Except for titles.
+ The remainder of the FTP documentation (through the end of Section 3)
+ is new to C-Kermit 8.0.206, but we leave it in black to prevent
+ headaches. Except for titles.
* [364]TERMINOLOGY
* [365]FEATURE NEGOTIATION
* [366]USING MGET: NLST VERSUS MLSD
mget /match:*.txt NLST MLSD
mget /match:*.txt foo NLST foo MLSD foo
- In other words, the pattern is always intepreted locally unless MGET
+ In other words, the pattern is always interpreted locally unless MGET
uses NLST and no /MATCH switch was given.
3.11.4. Examples
Kermit 95, the display character-set is Unicode, perhaps converted to
your current console code page; in other versions of C-Kermit, it is
your current file character-set. Thus if you have the following set
- appriately:
+ appropriately:
SET FILE CHARACTER-SET (necessary in Unix but not K95)
SET FILE DEFAULT 7BIT CHARACTER-SET
L-commands
When Kermit has a connection to a Kermit or FTP server, file
- managment commands such as CD, DIRECTORY, and DELETE might be
+ management commands such as CD, DIRECTORY, and DELETE might be
intended for the local computer or the remote server. C-Kermit
8.0.200 and earlier always executes these commands on the local
computer. If you want them executed by the remote server, you
file-transfer and management commands. The default LOCUS is
AUTO, which means we switch to REMOTE whenever an FTP connection
is made, and to LOCAL whenever a non-FTP connection is made, and
- switch back accordingly whenever a connnection is closed. So by
+ switch back accordingly whenever a connection is closed. So by
default, Kermit behaves in its traditional manner unless you
make an FTP connection, in which case it acts like a regular FTP
client (but better :-) LOCUS applies to the following
CD (CWD) RCD LCD Change (Working) Directory
CDUP RCDUP LCDUP CD Up
PWD RPWD LPWD Print Working Directory
- DIRECTORY RDIR LDIR Request a directory listinga
+ DIRECTORY RDIR LDIR Request a directory listing
DELETE RDEL LDEL Delete (a) file(s)
- RENEME RREN LREN Rename a file
+ RENAME RREN LREN Rename a file
MKDIR RMKDIR LMKDIR Create a directory
RMDIR RRMDIR LRMDIR Remove a directory
\fverify(s1,s2,n)
As of version 8.0.211, returns -1 if s2 is an empty string.
Previously it returned 0, making \fverify(abc,\%a) look as if
- \%a was a string combosed of a's, b's, and/or c's when in fact
+ \%a was a string composed of a's, b's, and/or c's when in fact
it contained nothing.
\fcode(string)
waits up to 8 seconds for one of the words "one", "two", or "three" to
arrive. Words can be grouped to indicate targets that contain spaces:
- MINPUT 8 nineteeen twenty "twenty one"
+ MINPUT 8 nineteen twenty "twenty one"
And of course you can also use variables in place of (or as part of)
the target names:
(0-23), mm the minute (0-59), ss the second (0-59), each with leading
zero if less than the field width. The date and time can be separated
by a space, an underscore, a colon, or the letter T. The time is in
- 24-hour format. Thus the various quantites are at the following fixed
+ 24-hour format. Thus the various quantities are at the following fixed
positions:
Position Contents
11-Aug-2001 12:34:56 -0800 (20010811 16:34:56 -- UTC Offset)
11-Aug-2001 12:34:56 -08:00 (20010811 04:34:56 -- Delta time)
- If you give a time followed by a modifer that starts with a + or -
+ If you give a time followed by a modifier that starts with a + or -
sign, how does Kermit know whether it's a UTC offset or a delta time?
It is treated as a UTC offset if the sign is followed by exactly four
decimal digits; otherwise it is a delta time. Examples (for USA Eastern
5 displays the result.
Here's a script that opens a web page, gets its headers into an array,
- scans the array for the "Last-Modified:" header, and inteprets it:
+ scans the array for the "Last-Modified:" header, and interprets it:
http open www.columbia.edu
if fail stop 1 HTTP OPEN failed
http /array:a head index.html /dev/null
This causes the string "abcdefghijklmnopqrstuvwxyz" to be sent
literally to the LENGTH macro. Kermit, like Lisp, also offers a
shortcut for QUOTE, that lets us quote a word by prefixing it with a
- single quote (') character, also called apostophe (ASCII 39):
+ single quote (') character, also called apostrophe (ASCII 39):
(length 'abcdefghijklmnopqrstuvwxyz)
26
9.9.1. Statistics
- The following program computes statistics -- means, maxima, mimima,
+ The following program computes statistics -- means, maxima, minima,
variance, standard deviation, and correlation -- from data stored in
parallel arrays, \&x[] and \&y[], which can contain any mixture of
integer and floating-point numbers: positive, negative, or zero. Array
The new defaults work for direct connections and for most modern modems
on most platforms, and they work much faster than "full-treatment"
dialing. If the new defaults don't work for you, or if you need to
- perform explicit modem configuations or interactions, then set a
+ perform explicit modem configurations or interactions, then set a
specific modem type and use the SET MODEM and SET DIAL commands as
documented in Using C-Kermit.
connection automatically when the telephone call is hung up (e.g.
"autohangup" on Cisco models).
- For a Linux-based Telnet Com-Port server, click the Srdird link:
+ For a Linux-based Telnet Com-Port server, click the Sredird link:
[ [575]Top ] [ [576]Contents ] [ [577]Sredird ] [ [578]C-Kermit Home ]
[ [579]Kermit Home ]
There are lots of faulty Kermit protocol implementations out there,
found mainly in 3rd-party products ranging from communications software
- packages to file-transfer functions imbedded within devices. This topic
+ packages to file-transfer functions embedded within devices. This topic
is covered [580]HERE for C-Kermit 7.0, but C-Kermit 8.0 adds some
additional tricks.