However, the documentation on vsftpd and the comments that came with the default configuration say this -
/# Set listen=YES if you want vsftpd to run standalone// //#// //listen=YES// / So my initial thought was that I should set listen=NO since I am wanting it to run as an inetd service, but if I set it to NO then I get the INVALIDARGUMENT error when I issue the command - /rcvsftpd start/ - regardless of whether I am trying to use SSL/TLS or not...
Hmmm I decided to give it a shot and run it as standalone and issued the command - vsftpd as root. Without enabling SSL it came up fine. However, when I tried to enable SSL/TLS I got a bit more info -
/vsftpd// //500 OOPS: SSL: cannot load RSA certificate// / which is a new interesting clue! I looked at the contents of the certificate file, seems OK AFAIK, and the path specified in the vsftpd.conf file is correct. I tried both versions of the certificate and key files that I have generated, as separate files and as a combined file, neither of which can be loaded... I could post the exact sequence of commands (minus sensitive info) that I issued to create these files, if you think that will be helpful but I think I pretty much followed the instructions for creating them verbatim. And I didn't experience any difficulties when I created the certificate and key files either.
Thanks again, Marc... yes, mailing list and proper formats ;)
ok ... i would say use listen=YES and run vsftpd as standalone to start / stop / restart / status the vsftpd daemon systemctl start vsftpd.service systemctl stop vsftpd.service systemctl restart vsftpd.service systemctl status vsftpd.service to debug error log vsftpd journalctl -f or just look into journal for vsftpd user journalctl -u vsftpd.service -f i think there's also a vsftpd error log in /var/log/vsftpd.log? but this depends up on the logging service on your suse box about this error //500 OOPS: SSL: cannot load RSA certificate// what's the path of the cert & key who owns the cert & key can vsftpd access the cert & key are there proper folder permissions on the directories up to where the cert & key files live? to minor the error about your self created cert & key files ... perhaps you want to generate a test cert & key online http://www.selfsignedcertificate.com/ this way you can be sure that the cert & key are setup properly :) please report back and let us know how it goes. greetings becki -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org