Go Back   HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials > Linux Forums > Installation/Configuration

Do you like HowtoForge? Please consider supporting us by becoming a subscriber.
Reply
 
Thread Tools Display Modes
  #1  
Old 24th February 2007, 22:22
pootle pootle is offline
Junior Member
 
Join Date: Feb 2007
Posts: 15
Thanks: 0
Thanked 0 Times in 0 Posts
Default proftpd TLS for all virtual hosts?

Is it possible to setup proftpd so that when ISPconfig create the virtual host it inherits the TLS settings?

I've set proftpd up to work with TLS but as soon as a virtual host is added it breaks the security as its not got a TLS config in it. How do you make it inherit the settings? If there and option in ISPConfig..
I've drunk a lot of coffee today so I might not be makin sense but I could do with some help here.
Reply With Quote
Sponsored Links
  #2  
Old 24th February 2007, 23:52
pootle pootle is offline
Junior Member
 
Join Date: Feb 2007
Posts: 15
Thanks: 0
Thanked 0 Times in 0 Posts
Default

I'm not sure its right but I think i've sorted this out.

in proftpd i added this (after compiling proftpd with tls support).

Code:
<IfModule mod_tls.c>
<global>
TLSEngine on
TLSLog /var/log/proftpd/proftpd_tls.log
#TLSProtocol TLSv1

</global>
TLSProtocol SSLv23

<global>
TLSRequired on
TLSVerifyClient off
TLSRSACertificateFile /etc/ssl_proftp/ftptls.cert
TLSRSACertificateKeyFile /etc/ssl_proftp/ftptls.key

</global>
</IfModule>
I'm not sure if its right as if a user logs into their domain foo.bar.com they'd get the master sight certificate of master.bar.com so the common names wouldn't match I know for https this is an issue but im not sure if ftp clients check to that level of detail. It works for me non the less as all child virtual hosts inherit this so it does work just maybe breaks the rule of security
Reply With Quote
  #3  
Old 25th February 2007, 18:58
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 41,701
Thanks: 1,900
Thanked 2,747 Times in 2,578 Posts
 
Default

If you like you can modify the proftpd_ispconfig.conf master template in /root/ispconfig/isp/conf/.
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
Reply

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Virtual Hosts K_meleonu Server Operation 8 16th January 2010 20:11
Virtual Hosting With Proftpd And MySQL Problems bigredgecko HOWTO-Related Questions 1 7th July 2006 13:56
Custom directives automatically added to ftpd virtual hosts whitty Feature Requests 2 17th May 2006 00:15
proftpd virtual host not working DaddyFix Installation/Configuration 6 19th April 2006 20:59
Im thinking about throwing proftpd to the trashcan danf.1979 Installation/Configuration 2 23rd December 2005 10:27


All times are GMT +2. The time now is 02:52.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.