Re: Proftpd+SSL/TLS!!!
Hi,
> Does anyone knows Proftpd+SSL/TLS was official idea from Proftpd ????
It´s something I absolutely don´t understand: the developers of
proftpd are not supporting this, don´t ask me why, it´s a real
problem... unfortunately I am no C-Coder, so I would do it
myself...*sigh* ... proftpd has really nice features (mysql lookup
e.g.), but NO SSL, and theres no ssl on the roadmap.
> Anyone got ideas as to the nature/solution of this problem? ;-)
Well you could do a
apt-get install ftpd-ssl
but then you do not have all that nice advanced features of proftpd,
afaik no mysql-backend.
Also there is one bsd-ftp that can be found here:
http://bsdftpd-ssl.sc.ru/
it uses pam for authentication, so somehow also keeping your users in
a mysql-db should be possible, but I didn´t get it to work.
My alternative is to use ssh, there is a really beatiful win-prog to
use scp, looks like mc, can be found here:
http://winscp.vse.cz/eng/
but then again you should setup a chroot environment, because it´s
still not possible to restrict access to a directory with ssh as
tight as with some ftp-servers, because ssh needs some libraries and
stuff, so there will be always more then just one upload-dir to see
for the users. Also don´t forget, that with ssh you users have a full
shell account, so building that jail should be done with real care. In
most cases it´s more than you want to give them - what again makes me
cry about missing ssl in proftpd :(
generally I also really would be happy, if one of the "big boys" could
tell us how to do it and which tools to setup, to get a secure
ftpd. A nice solution would be to have mysql-backed virtual users for
ease of administration.
Have a nice day,
Jones
Reply to: