Racker Hacker » vsftpd http://rackerhacker.com Words of wisdom from a server administrator Wed, 16 May 2012 12:55:04 +0000 en hourly 1 http://wordpress.org/?v=3.3.2 Adding SSL encryption to vsftpd http://rackerhacker.com/2007/11/26/adding-ssl-encryption-to-vsftpd/ http://rackerhacker.com/2007/11/26/adding-ssl-encryption-to-vsftpd/#comments Mon, 26 Nov 2007 18:21:54 +0000 Major Hayden http://rackerhacker.com/2007/11/26/adding-ssl-encryption-to-vsftpd/ Adding SSL encryption to vsftpd is a post from: Major Hayden's Racker Hacker blog.

Thanks for following the blog via the RSS feed. Please don't copy my posts or quote portions of them without attribution.

]]> There may be some situations where you want to encrypt FTP traffic with SSL certificates rather than using SFTP with SSH. Using vsftpd with SSL encryption is quite easy, and here's how it's done:

First, you'll need to make a new self-signed SSL certificate (if you don't have a key and certificate available already):

openssl req -new -newkey rsa:1024 -days 365 -nodes -x509 -keyout server.key -out server.crt

Once you have the key and certificate made, you'll need to concatenate them into a PEM file:

# cat server.key > /etc/vsftpd/server.pem
# cat server.crt >> /etc/vsftpd/server.pem

Now, simply adjust the vsftpd configuration file to enable SSL encryption:

ssl_enable=YES
force_local_data_ssl=NO
force_local_logins_ssl=NO
ssl_tlsv1=YES
ssl_sslv2=NO
ssl_sslv3=YES
rsa_cert_file=/etc/vsftpd/server.pem

Once that's complete, restart vsftpd and you will be able to connect to your FTP server using SSL/TLS encryption.

Further Reading:
Manpage of vsftpd.conf

Adding SSL encryption to vsftpd is a post from: Major Hayden's Racker Hacker blog.

Thanks for following the blog via the RSS feed. Please don't copy my posts or quote portions of them without attribution.

]]> http://rackerhacker.com/2007/11/26/adding-ssl-encryption-to-vsftpd/feed/ 5