[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Proftpd+SSL/TLS!!!


> Does anyone knows Proftpd+SSL/TLS was official idea from Proftpd ????

It´s  something  I  absolutely  don´t  understand:  the  developers of
proftpd  are  not  supporting  this,  don´t  ask  me  why, it´s a real
problem...   unfortunately   I  am  no  C-Coder,  so  I  would  do  it
myself...*sigh*  ...  proftpd  has  really nice features (mysql lookup
e.g.), but NO SSL, and theres no ssl on the roadmap.

> Anyone got ideas as to the nature/solution of this problem?   ;-)

Well you could do a

apt-get install ftpd-ssl

but  then  you do not have all that nice advanced features of proftpd,
afaik no mysql-backend.

Also there is one bsd-ftp that can be found here:


it  uses pam for authentication, so somehow also keeping your users in
a mysql-db should be possible, but I didn´t get it to work.

My  alternative  is to use ssh, there is a really beatiful win-prog to
use scp, looks like mc, can be found here:


but  then  again  you  should setup a chroot environment, because it´s
still   not   possible   to restrict access to a directory with ssh as
tight  as  with some ftp-servers, because ssh needs some libraries and
stuff,  so  there  will be always more then just one upload-dir to see
for  the users. Also don´t forget, that with ssh you users have a full
shell account, so building that jail should be done with real care. In
most  cases it´s more than you want to give them - what again makes me
cry about missing ssl in proftpd :(

generally I also really would be happy, if one of the "big boys" could
tell  us  how  to  do  it  and  which  tools to setup, to get a secure
ftpd.  A nice solution would be to have mysql-backed virtual users for
ease of administration.

Have a nice day,

Reply to: