23Jun/090
proftpd with ssl and fxp
After you have installed your awesome Linux distribution, you might be looking to use a protocol for allowing users be able to update content on the box. I have chosen to use ProFTPD because of its features of setting user and group permissions based on directory patterns in its config file. Unfortunetlly, the user and password information are broadcasted in the clear across the data packets. Never Fear!! SSL is here!
Configure ProFTPd
- mkdir /etc/proftpd/ssl
- openssl req -new -x509 -days 365 -nodes -out /etc/proftpd/ssl/proftpd.cert.pem -keyout /etc/proftpd/ssl/proftpd.key.pem
- fill in info for the cert
- enable TLS by adding the following lines in proftpd.conf and then restart:
<IfModule mod_tls.c> TLSEngine on TLSLog /var/log/proftpd/tls.log TLSProtocol SSLv23 TLSOptions NoCertRequest TLSRSACertificateFile /etc/proftpd/ssl/proftpd.cert.pem TLSRSACertificateKeyFile /etc/proftpd/ssl/proftpd.key.pem TLSVerifyClient off TLSRequired off </IfModule>
Calendar
Categories
- Apple
- Design
- Food
- Fun
- Health
- Innovation
- iPhone
- Linux
- Music
- Organization
- Photos
- Programming
- Sysadmin
- Tech
- Travel
- Uncategorized
- Video
- Windows
Archives
- February 2010 (3)
- January 2010 (2)
- December 2009 (1)
- November 2009 (6)
- September 2009 (16)
- August 2009 (1)
- July 2009 (1)
- June 2009 (1)
- May 2009 (1)
- April 2009 (3)
- March 2009 (12)
- February 2009 (4)
- January 2009 (6)
- December 2008 (14)
- November 2008 (16)
- October 2008 (4)
- September 2008 (3)
- August 2008 (4)
- July 2008 (10)
- June 2008 (3)
- May 2008 (19)
- April 2008 (10)
Recent Comments
- aaron on Luv Deluxe
- Anilhope on my iPhone’s receiver does not work and nobody can hear me!
- Beth on Untangaling my phone cord super fast
- aaron on Untangaling my phone cord super fast
- lou Juliana on Untangaling my phone cord super fast
Blogroll
- Intrinsitivity An Exploration of Our Intrinsic Sensitivity to Information
Tech News
- Slash Dot Org News for nerds. Stuff that matters.