search for: ssl_enabl

vsftpd-2.0.1-5 I am trying to get vsftpd to start with ssl_enabled=yes and not having much success. The config file works when ssl_enabled=No and does not work when ssl_enabled=Yes. I have tried setting the following: rsa_cert_file=/usr/share/ssl/certs/inet06cert.pem which is the public certificate and this: rsa_cert_file=/usr/share/ssl/private/inet06key....

Hello, Does anyone have this working? I have been looking for a couple of hours trying to find docs on how to set this up and so far the only thing I have found is how to enable ssl in vsftpd.conf. TIA

I have a new CentOS 7.4 (recently upgraded to 7.5) system that I have been struggling with in configuring vsftpd for FTPS Implicit (port 990). (The latest instructions I've used are at: https://www.unixmen.com/configure-vsftpd-ssltls-centos-7/) Using Filezilla client, I get: Error: GnuTLS error -15: An unexpected TLS packet was received. Error: Could not connect to

...We now have an external company that will have to do a new website for us and we want them to access securely our development server. Internally, we access it with regular FTP (we use DreamWeaver 8). In the references i saw, i'd just add the following lines and it is supposed to work: ssl_enable=YES allow_anon_ssl=NO force_local_data_ssl=NO force_local_logins_ssl=NO ssl_tlsv1=YES ssl_sslv2=YES ssl_sslv3=NO rsa_cert_file=/etc/vsftpd/vsftpd.pem Here are the previous lines in my vsftpd config: anonymous_enable=YES local_enable=YES write_enable=YES local_umask=022 dirmessage_enable=YES xf...

...is replaced with example.com. Use your own domain name there as registered with LetsEncrypt. # see # http://beginlinux.com/blog/2009/01/secure-ftp-with-ssl-on-centos/ rsa_cert_file=/etc/letsencrypt/live/example.com/fullchain.pem rsa_private_key_file=/etc/letsencrypt/live/example.com/privkey.pem ssl_enable=YES force_local_logins_ssl=NO force_local_data_ssl=NO ssl_tlsv1=YES ssl_sslv2=YES ssl_sslv3=YES # limit pasv ports to range that iptables can check pasv_min_port=6900 pasv_max_port=6969 # added 20120213 to deal with FileZilla 3.5.3 stricter cipher list # see http://forum.filezilla-project.org/vi...

...s, afraid it may be causing issues with the ssl) iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 21 -j ACCEPT again, normal ftp fine. vsftp file below are the additional commands I entered to get ssl/tls up and running. pam_service_name=vsftpd userlist_enable=YES tcp_wrappers=YES ssl_enable=YES implicit_ssl=yes <--- tried with and without this and the port 21 below listen_port=21 <-- see above allow_anon_ssl=NO force_local_data_ssl=NO <-- set this to yes so I can still test normal functions force_local_logins_ssl=NO ssl_tlsv1=YES ssl_sslv2=NO ssl_sslv3=NO rsa_cert_file=/etc...

...ening on IPv6 sockets. To listen on IPv4 and IPv6 # sockets, you must run two copies of vsftpd whith two configuration files. # Make sure, that one of the listen options is commented !! #listen_ipv6=YES pam_service_name=vsftpd userlist_enable=YES tcp_wrappers=YES ###added for TLSand SSL permission ssl_enable=YES allow_anon_ssl=NO force_local_data_ssl=NO force_local_logins_ssl=YES ssl_tlsv1=YES ssl_sslv2=YES ssl_sslv3=YES rsa_cert_file=/etc/vsftpd/vsftpd.pem rsa_private_key_file=/etc/vsftpd/vsftpd.pem local_root=/var/ftp #userlist_file=/etc/vsftpd/ftpusers userlist_file=/etc/vsftpd/ftpusers #userlist_f...

...0U8Jdo0RFvts&r=EOaM1MkMLG24_TOy4m7EdDoX0CP9-c0YJ2kTdeagcqQ&m=pOhXDNk2HbQgZLcLf-QR_SwfNLQr4nYWByJ7xBAEhzo&s=BtdOGrSrWbyXnhcXRGrpjCnjzIHLoKYhtVyCn7OhEWQ&e= rsa_cert_file=/etc/letsencrypt/live/example.com/fullchain.pem rsa_private_key_file=/etc/letsencrypt/live/example.com/privkey.pem ssl_enable=YES force_local_logins_ssl=NO force_local_data_ssl=NO ssl_tlsv1=YES ssl_sslv2=YES ssl_sslv3=YES # limit pasv ports to range that iptables can check pasv_min_port=6900 pasv_max_port=6969 # added 20120213 to deal with FileZilla 3.5.3 stricter cipher list # see https://urldefense.proofpoint.com/v2/...

...ach { |sock| sock.fcntl(Fcntl::F_SETFD, Fcntl::FD_CLOEXEC) } - after_fork.call(self, worker) # can drop perms + worker.user(*user) if user.kind_of?(Array) && ! worker.switched self.timeout /= 2.0 # halve it for select() @config = nil build_app! unless preload_app ssl_enable! @after_fork = @listener_opts = @orig_app = nil + readers = LISTENERS.dup + readers << worker + trap(:QUIT) { readers.each { |io| io.close }.replace([false]) } + readers end def reopen_worker_logs(worker_nr) logger.info "worker=#{worker_nr} reopening logs.....

A character device for accessing (in user-space) pages that have been granted by other domains. Signed-off-by: Derek Murray <Derek.Murray@cl.cam.ac.uk> _______________________________________________ Xen-devel mailing list Xen-devel@lists.xensource.com http://lists.xensource.com/xen-devel