Go Back   HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials > ISPConfig 3 > Installation/Configuration

Do you like HowtoForge? Please consider supporting us by becoming a subscriber.
Reply
 
Thread Tools Display Modes
  #1  
Old 8th September 2012, 22:55
Wisdown Wisdown is offline
Member
 
Join Date: Aug 2012
Posts: 82
Thanks: 7
Thanked 2 Times in 2 Posts
Default FTP - Connection refused using Certificate2

Hi guys,

I was following the guide:

http://www.howtoforge.com/securing-y...-from-startssl

And then i bought a certificate level2, i did an request for *.domain.com (then i dont need request more certificates) and the followed the guide.

On apache worked pretty nice, i see the pages using https without warning messages, and clicking on certificate says startssl.

On ftp, i got an problem, all connections says:

Quote:
connect: Connection refused
Checking the /var/log/syslog i see this:

Quote:
web pure-ftpd: (?@?) [ERROR] Sorry, but that file doesn`t exist: [/etc/ssl/private/pure-ftpd.pem]
Then my first guess is because the guide say to do an link, i did:

Quote:
unlink pure-ftpd.pem
cp /usr/local/ispconfig/interfaces/ssl/ispserver.pem /etc/ssl/private/pure-ftpd.pem
Same error.
Then my next guess is about the other file in same directory the: ssl-cert-snakeoil.key
I tried copy ispserver.crt and named as ssl-cert-snakeoil.key, but dindt worked too..

Someone can give me an hint how to fix it?

I gonna check if the mails are working.

Last edited by Wisdown; 8th September 2012 at 23:07.
Reply With Quote
Sponsored Links
  #2  
Old 8th September 2012, 23:47
Wisdown Wisdown is offline
Member
 
Join Date: Aug 2012
Posts: 82
Thanks: 7
Thanked 2 Times in 2 Posts
Default

I did more tests, my mail isnt working now, the logs say:

Quote:
mail dovecot: imap-login: Fatal: Can't load private key file /etc/postfix/smtpd.key: error:02001002:
But i have copied the files and they exist

Checking on web, only the ISPConfig admin pannel get the certificate working, if i use:

https://mydomain.com:8080

The certificate works fine. But if i try:

https://mydomain.com

The page doesnt load.

Other test i did is about roundcube redirect, when i try use another domain like:

http://domain2.com/webmail

Now the redirect isnt working anymore

There another guide for get the certificate working without broken all those things?
Reply With Quote
  #3  
Old 9th September 2012, 00:53
Wisdown Wisdown is offline
Member
 
Join Date: Aug 2012
Posts: 82
Thanks: 7
Thanked 2 Times in 2 Posts
Default

I fixed the issue with the ftp, from guide where says:

Quote:
cat ispserver.{key,crt} startssl.chain.class1.server.crt > ispserver.pem
Need be:

Quote:
cat ispserver.key ispserver.crt > ispserver.pem
Or gonna get the startssl.chain.class1.server.crt too, appending 3 files instead 2

On mail server i did an full restart instead restart only the service, and mails are working now

The issue about redirect for roundcube mail still, from other domain when i try:

http://domain2.com/webmail

The redirect is made for the old certificate.

The last step i`m trying get working is have the SSL enabled for the main site, on ISPConfig Sites /Website/domain1 (my main domain) i checked the box SSL.
But dindt worked.

Apache Still saying:

[warn] 192.168.100.3:443 has no VirtualHosts

Last edited by Wisdown; 9th September 2012 at 00:57.
Reply With Quote
  #4  
Old 10th September 2012, 08:12
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 41,701
Thanks: 1,900
Thanked 2,727 Times in 2,565 Posts
Default

Quote:
Originally Posted by Wisdown View Post
The last step i`m trying get working is have the SSL enabled for the main site, on ISPConfig Sites /Website/domain1 (my main domain) i checked the box SSL.
But dindt worked.

Apache Still saying:

[warn] 192.168.100.3:443 has no VirtualHosts
You must go to the SSL tab and create an SSL cert.
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
  #5  
Old 10th September 2012, 09:46
Wisdown Wisdown is offline
Member
 
Join Date: Aug 2012
Posts: 82
Thanks: 7
Thanked 2 Times in 2 Posts
 
Default

I solved the ssl issue follwing one hint yours in another post (dont have the link now since i`m opening a lot of tabs looking for research the solutions).

In the other post i see you saying to link the server certificate for the website folder(/ssl), i did same thing and worked pretty nice.
Reply With Quote
Reply

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
ISPConfig "backend" completely unfunctional after a restart Xaymar Installation/Configuration 1 22nd August 2011 22:31
ISPConfig 3 Send/Receive mail not working. Acidut General 6 4th April 2010 11:24
Mail not working epicuniversal General 5 13th June 2009 08:24
proFTPd passive mode problems bisbell Server Operation 8 6th August 2008 21:12
Question about Virtual Hosting With Proftpd And MySQL (Incl. Quota) On Debian Etch ikkem HOWTO-Related Questions 30 26th February 2008 19:38


All times are GMT +2. The time now is 15:48.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.