SSL how to: install ssl on vsftpd

Article describes how to get StartSSL certificates working with vsftpd. First of all read how to get free ssl certificate from StartSSL and actually create certificates or you can read to create self-signed certificate and use self-signed certificates and use them here changed the steps accordignly.

As usual first step is to create required files and set access permissions:

$ cat www_certificate.pem > /etc/ssl/certs/vsftpd.pem
$ cat www_privatekey.pem > /etc/ssl/private/vsftpd.pem
$ chown root:ssl-cert /etc/ssl/private/vsftpd.pem
$ chmod 644 /etc/ssl/private/vsftpd.pem
$ chown root:root /etc/ssl/certs/vsftpd.pem
$ chmod 444 /etc/ssl/certs/vsftpd.pem

The SSL portion of the vsftpd config should look something like this.

 rsa_cert_file=/etc/ssl/certs/vsftpd.pem
 rsa_private_key_file=/etc/ssl/private/vsftpd.pem
 ssl_enable=YES
 force_local_data_ssl=NO
 force_local_logins_ssl=NO
 ssl_tlsv1=YES
 ssl_sslv2=NO
 ssl_sslv3=NO
Posted by:
Enjoyed this post? Share and Leave a comment below, thanks! :)