-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Monday, 2013-04-29 at 09:04 +0200, Bernhard Voelker wrote: El 2013-04-29 a las 09:04 +0200, Bernhard Voelker escribió:
On April 25, 2013 at 5:47 PM Paul Groves <> wrote: I would like to look at using SFTP buy cannot get my head around SSL on open SUSE.
If I am correct, I believe that creating certificates and keys can be done using yast2-ca-management but I have been unsuccessful in doing so. I want to be able to use SSL with FTP and Apache. Has anyone experience with this?
Hi Paul,
SFTP has nothing to do with Apache; it is handled by the SSH daemon. It should work out of the box (when sshd is running) with the user's normal passwords, or with the SSH key files if set up. $ man ssh; man sshd; man sshd_config
Yes, but vsftpd also has ssl configuration. ssl_enable If enabled, and vsftpd was compiled against OpenSSL, vsftpd will support secure connections via SSL. This applies to the control connection (including login) and also data connections. You'll need a client with SSL support too. NOTE!! Beware enabling this option. Only enable it if you need it. vsftpd can make no guar- antees about the security of the OpenSSL libraries. By enabling this option, you are declaring that you trust the security of your installed OpenSSL library. Default: NO However, the name is still "ftp", so it is not that simple to know if you are using a secured connection or not, or to enforce it. The name "sftp" refers to file transfer over ssh procedures, it is a different thing. IMHO, they should have used a different name. - -- Cheers, Carlos E. R. (from 12.1 x86_64 "Asparagus" at Telcontar) -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.18 (GNU/Linux) iEYEARECAAYFAlF+fYUACgkQtTMYHG2NR9VwdwCfRQ7CqD0RtCWGxuZTTpkJJDda 99IAoJUPn7/U7/6VB59iBd0r69Fd15xr =dJdP -----END PGP SIGNATURE-----