Sorry if this has been said. I haven't been following the thread, but why
not setup stunnel and run proftpd through that? I've done it here for mail
and it works great (even with qmail and daemontools), so I see no reason
why you couldn't do the same for FTP
At 14:32 1/08/2002 +0200, Jones Down wrote:
> Does anyone knows Proftpd+SSL/TLS was official idea from Proftpd ????
It´s something I absolutely don´t understand: the developers of
proftpd are not supporting this, don´t ask me why, it´s a real
problem... unfortunately I am no C-Coder, so I would do it
myself...*sigh* ... proftpd has really nice features (mysql lookup
e.g.), but NO SSL, and theres no ssl on the roadmap.
> Anyone got ideas as to the nature/solution of this problem? ;-)
Well you could do a
apt-get install ftpd-ssl
but then you do not have all that nice advanced features of proftpd,
afaik no mysql-backend.
Also there is one bsd-ftp that can be found here:
it uses pam for authentication, so somehow also keeping your users in
a mysql-db should be possible, but I didn´t get it to work.
My alternative is to use ssh, there is a really beatiful win-prog to
use scp, looks like mc, can be found here:
but then again you should setup a chroot environment, because it´s
still not possible to restrict access to a directory with ssh as
tight as with some ftp-servers, because ssh needs some libraries and
stuff, so there will be always more then just one upload-dir to see
for the users. Also don´t forget, that with ssh you users have a full
shell account, so building that jail should be done with real care. In
most cases it´s more than you want to give them - what again makes me
cry about missing ssl in proftpd :(
generally I also really would be happy, if one of the "big boys" could
tell us how to do it and which tools to setup, to get a secure
ftpd. A nice solution would be to have mysql-backed virtual users for
ease of administration.
Have a nice day,
To UNSUBSCRIBE, email to email@example.com
with a subject of "unsubscribe". Trouble? Contact firstname.lastname@example.org