On Wed, Aug 18, 2004 at 06:26:05PM +0200, Ruben Puettmann wrote: > Package: vsftpd > Version: 2.0.1-1 > Serverity: normal > > > since Version 2.0.0 vsftp supports SSL / TLS to encrypt FTP logins and > subsequent commands, as well as the data transfers themselves > > The Documentation is in /usr/share/doc/vsftpd/README.ssl. But the > /usr/share/ssl/certs/vsftpd.pem is not aviable and I can't find tool's > for building one. > > As example take a look to the courier ssl packages for pop3-ssl oder > imapd-ssl. They have an .cnf file an mkimapdcert oder mkpop3dcert. > > They saved there pem files in /usr/lib/courier.
My apologies for not responding to this report sooner. Did you read the whole section on PEM files in README.ssl? It says: - A SSL certificate. By default, an RSA certificate is looked for at the location /usr/share/ssl/certs/vsftpd.pem. To get an RSA certificate, either buy one from a certificate authority, or you can create your own self-signed certificate. If you have OpenSSL installed, you may find a "Makefile" in your shared certificates directory, e.g. /usr/share/ssl/certs. In that case, go to that directory and type e.g. "make vsftpd.pem". Then answer the questions you are asked. Alternatively, read the man page for "openssl". The man page isn't the greatest, but there is other documentation available for OpenSSL. For an example you can read mkimapdcert, which is a shell script. It would be nice if vsftpd offered to create an SSL certificate when installed; I'll leave the bug open for now. -- Daniel Jacobowitz CodeSourcery, LLC -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
