Topic: Question about proftpd and MOD_TLS

[davibou]

Does anyone now how to configure proftpd whith mod_tls ???

I know that the distrib Free-eos ( based on a old e-smith version ) have this option for proftpd so i look in the templates copy the script for mod_TLS but dont work anyway ...

Any idea ??

[davibou]

That i tried

I do a custom template for proftpd

mkdir -p /etc/e-smith/templates-custom/etc/proftpd.conf

make a fragment

07TLSEngine

content:
<IfModule mod_tls.c>
    TLSEngine on
    TLSLog /var/log/proftpd/tls.log
    TLSProtocol TLSv1

    # Are clients required to use FTP over TLS when talking to this server?
    TLSRequired on

    # Server's certificate
    TLSRSACertificateFile /home/e-smith/ssl.crt/test-1.server.lan.crt
    TLSRSACertificateKeyFile /home/e-smith/ssl.key/test-1.server.lan.key

    # Authenticate clients that want to use FTP over TLS?
    TLSVerifyClient off
  </IfModule>

expend template
/sbin/e-smith/expand-template /etc/proftpd.conf


But when i tried to loggin to the ftp 2 bug
1) i can loggin to the ftp whith a client not configured to used SSL/TLS
2) when il used a configured client whith SSL/TLS error 500

AUTH TLS
500 AUTH not understood
Failed SSL/TLS negotiation, disconnected
Connection failed
Delaying for 64 seconds before reconnect attempt #2

Any idea ??