Skip to main content

Thread: Can't get SSL to work over vsftpd

-

i've been trying , searching online days now, can't seem ssl working on vsftpd. have set right ssl not required - can log in fine , works normal ftp. however, try use implicit ssl, auth ssl, or auth tls fireftp plain doesn't work. tried filezilla no luck (connecting windows machine). i'm using ubuntu server 10.04.2 vsftpd 2.2.2.

  • fireftp no encryption port 21: works fine
  • fireftp implicit ssl port 21:
    unable make connection. please try again.
  • fireftp auth ssl port 21:
    220 (vsftpd 2.2.2)
    auth ssl
    234 proceed negotiation.
    pbsz 0
    , that's it, doesn't connect.
  • fireftp auth tls port 21:
    220 (vsftpd 2.2.2)
    auth tls
    234 proceed negotiation.
    pbsz 0
    , that's it, doesn't connect.
  • filezilla no encryption port 21: works fine
  • filezilla require implicit ftp on tls:
    status: connecting xx.xxx.xxx.xx:21...
    status: connection established, initializing tls...
    error: could not connect server
  • filezilla require explict ftp on tls:
    status: connecting xx.xxx.xxx.xx:21...
    status: connection established, waiting welcome message...
    response: 220 (vsftpd 2.2.2)
    command: auth tls
    response: 234 proceed negotiation.
    status: initializing tls...
    error: could not connect server


have ideas might wrong, or logs might able at? /var/log/vsftpd.log has nothing of interest. i'd force ssl.

here's vsftpd.conf:
code:
virtual_use_local_privs=yes  ssl_enable=yes  force_local_data_ssl=no  force_local_logins_ssl=no  ssl_tlsv1=yes  ssl_sslv2=yes  ssl_sslv3=yes  require_ssl_reuse=no    write_enable=yes  guest_enable=no  user_sub_token=$user  chroot_local_user=yes  chroot_list_enable=no  local_root=/srv/fshome/ftp_accounts/$user  hide_ids=yes    local_umask=0111    listen_port=21    pasv_enable=yes  pasv_min_port=36000  pasv_max_port=36010    listen=yes  anonymous_enable=no  local_enable=yes  dirmessage_enable=yes  use_localtime=yes  xferlog_enable=yes  connect_from_port_20=yes  secure_chroot_dir=/var/run/vsftpd/empty  pam_service_name=vsftpd  rsa_cert_file=/etc/ssl/certs/ssl-cert-snakeoil.pem  rsa_private_key_file=/etc/ssl/private/ssl-cert-snakeoil.key

okay, turns out sort of firewall issue testing access. if plaintext data allowed on both port 21 , 990, tcp connection works no data transfer allowed. testing different internet connection worked fine.

reading various forum posts, text-only on port 21 seems common restriction, decided switch sftp instead after searching revealed openssh supports chroot jails can jail them on external file storage drive i'm using.


Forum The Ubuntu Forum Community Ubuntu Specialised Support Ubuntu Servers, Cloud and Juju Server Platforms [ubuntu] Can't get SSL to work over vsftpd


Ubuntu

Comments

Post a Comment

Popular posts from this blog

How to set the order of FAQs instead of alphabetical

-
i have 19 faqs default showing them in alphabetical order.   i dislplay them in different order, weighting this, , how weighting work, is larger number higher priority, question id show first on list need numbered in weight field 19? hey vickituch,   as mentioned, default faq items sorted alphabetically. weighting, can modify order in faq items appear. way weighting works higher number specify, higher priority faq item have. example, if have 3 items each weight specified, priority follows:   99. faq item. 45. faq item. 7. yet faq item More discussions in Content Management and Modules adobe
Read more

Thread: Get UK Keyboard working

-
i using ubuntu desktop on lucid , keyboard changes british keys american keys, #/£, ~/| , "/@ around. in system->preferences->keyboard menu have set keyboard uk. when log via putty uk keys come out right. there other place more configuration required? /vfclistsguy actually settings should enough.. can try setxkbmap -query see current layout settings. Forum The Ubuntu Forum Community Ubuntu Official Flavours Support Desktop Environments [kubuntu] Get UK Keyboard working Ubuntu
Read more

how do I change the e-mail address for my merchant account

-
aloha   i have different primary address paypal account 1 listed merchant account in form   the different address same paypal account different e-mail address   i change responses   how do that?? hi,   you need register email address want paypal account form, current paypal email used form replaced. that, open form, go options -> collect payments. in paypal setup tab, enter new email address , click register.   please let me know if need more assistance.   thanks,   eman fu senior computer scientist adobe systems inc More discussions in Archived Spaces adobe
Read more