I am currently trying to bring up a new FTP server with a new version of
proftpd to replace an old server with proftpd version 1.2.5rc1. I have
little knowledge of TLS, SSL, proftpd or openssl and would like to
understand these protocols and utilities better but need some
sugesstions on reading material. I have several questions that are
pretty basic ...

1. Are there two different versions of proftpd, one for xinetd and the
other standalone? If not, how easy is it to force proftpd to work in
the standalone mode?
2. I have an old config for 1.2.5 will to work with the new 1.2.10
version if I update the variables.
3. I have certificate and key files but the extension is not .pem. How
do I encode them as .pem. Also the devices that proftpd is
corresponding with may not return .pem files, is that a problem?
4. We are using mod_tls and there doesn't seem to be an analogous
variable to the TlsCertOK is "TLSOptions NoCertRequest" the same?
5. Are there any other TLS commands that I'll be required to use that
may have been assumed in the 1.2.5rc1 configuration?

TLS portion of the proftpd configuration:
TlsRsaCertFile /usr/local/ssl/certs/xxx.xxx.xxx.crt
TlsRsaKeyFile /usr/local/ssl/private/xxx.xxx.xxx.key
TlsCipherList All
TlsRequired on
TlsCertOK off

Changed to:
TlsRsaCertificateFile /usr/local/ssl/certs/xxx.xxx.xxx.crt
TlsRsaCertificateKeyFile /usr/local/ssl/private/xxx.xxx.xxx.key
TlsCipherSuite All
TlsRequired on
TlsOptions NoCertRequest

Thanks in advance for any help you can provide,

Donald Meier
SCM Engineer
TTE Technology Inc.
101 W. 103rd St
Indianapolis IN, 46032
PH: 1-317-587-3481

Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys - and earn cash
ProFTPD Users List
Unsubscribe problems?