[BlueOnyx:11352] Re: 5108R FTPS
Ken - Precision Web Hosting, Inc
kenlists at precisionweb.net
Wed Sep 19 13:04:45 -05 2012
----- Original Message -----
From: "Ken - Precision Web Hosting, Inc" <kenlists at precisionweb.net>
>
> For some reason Michael's solution did not work for me. Proftpd would not
> start.
>
> My solution was to:
> 1. Leave it as inet
> 2. Add the lines below to the /etc/proftpd.conf within the <Global>
> </Global> container
> <IfModule mod_tls.c>
> TLSEngine on
> TLSLog /var/log/tls.log
> TLSRequired off
> TLSOptions NoCertRequest
> TLSRSACertificateFile /etc/admserv/certs/certificate
> TLSRSACertificateKeyFile /etc/admserv/certs/key
> TLSVerifyClient off
> TLSRenegotiate required off
> </IfModule>
>
> Then within my "Secure FX" software set it to use:
> - FTPS explicit
> - on port 22
> - disable certificate validation (if you are using something else for
> the hostname instead of the servername )
>
>
>
Also, maybe we could have the DeferWelcome and ServerIdent Off set in the
<Global> by default also.
http://www.proftpd.org/docs/directives/linked/config_ref_DeferWelcome.html
http://www.proftpd.org/docs/directives/linked/config_ref_ServerIdent.html
Ken
More information about the Blueonyx
mailing list