vsftpd-2.0.1-5
I am trying to get vsftpd to start with ssl_enabled=yes and not having much success. The config file works when ssl_enabled=No and does not work when ssl_enabled=Yes. I have tried setting the following:
rsa_cert_file=/usr/share/ssl/certs/inet06cert.pem
which is the public certificate and this:
rsa_cert_file=/usr/share/ssl/private/inet06key.pem
which is the server private key. Both these are in use by the apache web server as :
SSLCertificateFile /usr/share/ssl/certs/inet06cert.pem
and
SSLCertificateKeyFile /usr/share/ssl/private/inet06key.pem
respectively and I have no trouble using ssl with that service. As far as I can tell the certificates are in the right places and do the right things for apache but vsftpd chokes. Since vsftpd does not deign to log what is going on I cannot tell what it finds disagreeable about this setup. Does anyone have any idea what would prevent vsftpd from using a certificate that works with apache?
Regards, Jim
-- *** e-mail is not a secure channel *** mailto:byrnejb.<token>@harte-lyne.ca James B. Byrne Harte & Lyne Limited vox: +1 905 561 1241 9 Brockley Drive fax: +1 905 561 0757 Hamilton, Ontario <token> = hal Canada L8E 3C3
Are there any audits being logged in /var/log/messages with SELinux security errors?
Cheers, MaZe.
On Thu, 28 Apr 2005, James B. Byrne wrote:
vsftpd-2.0.1-5
I am trying to get vsftpd to start with ssl_enabled=yes and not having much success. The config file works when ssl_enabled=No and does not work when ssl_enabled=Yes. I have tried setting the following:
rsa_cert_file=/usr/share/ssl/certs/inet06cert.pem
which is the public certificate and this:
rsa_cert_file=/usr/share/ssl/private/inet06key.pem
which is the server private key. Both these are in use by the apache web server as :
SSLCertificateFile /usr/share/ssl/certs/inet06cert.pem
and
SSLCertificateKeyFile /usr/share/ssl/private/inet06key.pem
respectively and I have no trouble using ssl with that service. As far as I can tell the certificates are in the right places and do the right things for apache but vsftpd chokes. Since vsftpd does not deign to log what is going on I cannot tell what it finds disagreeable about this setup. Does anyone have any idea what would prevent vsftpd from using a certificate that works with apache?
Regards, Jim
-- *** e-mail is not a secure channel *** mailto:byrnejb.<token>@harte-lyne.ca James B. Byrne Harte & Lyne Limited vox: +1 905 561 1241 9 Brockley Drive fax: +1 905 561 0757 Hamilton, Ontario <token> = hal Canada L8E 3C3
CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Am Do, den 28.04.2005 schrieb James B. Byrne um 22:36:
vsftpd-2.0.1-5
I am trying to get vsftpd to start with ssl_enabled=yes and not having much success. The config file works when ssl_enabled=No and does not work when ssl_enabled=Yes. I have tried setting the following:
rsa_cert_file=/usr/share/ssl/certs/inet06cert.pem
which is the public certificate and this:
rsa_cert_file=/usr/share/ssl/private/inet06key.pem
which is the server private key. Both these are in use by the apache web server as :
Jim
Both certificate files must be 1 file.
cat /usr/share/ssl/certs/inet06cert.pem /usr/share/ssl/private/inet06key.pem > /usr/share/ssl/certs/vsftpd.pem
In vsftpd.conf:
rsa_cert_file=/usr/share/ssl/certs/vsftpd.conf
Alexander
-
Alexander Dalloz -
James B. Byrne -
Maciej Zenczykowski