[CentOS] vsftp 500 OOPS: SSL: cannot load RSA key

Thu Apr 28 21:08:53 UTC 2005
Maciej Zenczykowski <maze at cela.pl>

Are there any audits being logged in /var/log/messages with SELinux
security errors?

Cheers,
MaZe.

On Thu, 28 Apr 2005, James B. Byrne wrote:

> vsftpd-2.0.1-5
>
> I am trying to get vsftpd to start with ssl_enabled=yes and not
> having much success.  The config file works when ssl_enabled=No and
> does not work when ssl_enabled=Yes. I have tried setting the
> following:
>
> rsa_cert_file=/usr/share/ssl/certs/inet06cert.pem
>
> which is the public certificate and this:
>
> rsa_cert_file=/usr/share/ssl/private/inet06key.pem
>
> which is the server private key.  Both these are in use by the
> apache web server as :
>
> SSLCertificateFile /usr/share/ssl/certs/inet06cert.pem
>
> and
>
> SSLCertificateKeyFile /usr/share/ssl/private/inet06key.pem
>
> respectively and I have no trouble using ssl with that service.  As
> far as I can tell the certificates are in the right places and do
> the right things for apache but vsftpd chokes.  Since vsftpd does
> not deign to log what is going on I cannot tell what it finds
> disagreeable about this setup.  Does anyone have any idea what
> would prevent vsftpd from using a certificate that works with
> apache?
>
> Regards,
> Jim
>
> --
>      *** e-mail is not a secure channel ***
> mailto:byrnejb.<token>@harte-lyne.ca
> James B. Byrne                Harte & Lyne Limited
> vox: +1 905 561 1241          9 Brockley Drive
> fax: +1 905 561 0757          Hamilton, Ontario
> <token> = hal                 Canada L8E 3C3
>
> _______________________________________________
> CentOS mailing list
> CentOS at centos.org
> http://lists.centos.org/mailman/listinfo/centos
>