how to force accept only ssl connections in vsftpd?

linux ssl ftp vsftpd
nashuald picture nashuald · Jul 17, 2012 · Viewed 9.3k times · Source

I did install and configure vsftpd with ssl using openssl. But I want to accept only ssl connections, or, in other words, deny non-ssl connections.

Answer

Icarus picture Icarus · Jul 18, 2012

If you set "force_local_logins_ssl=YES" then your clients will be required to use an FTP client that supports AUTH TLS/SSL in order to connect. If you leave it at "NO" then people can connect securely or insecurely.

Source

All you need to do is change that setting in /etc/vsftpd.conf or in /etc/vsftp/vsftpd.conf; depending on your distro, the .conf file should be on of those 2 places. Then all you should need to do is restart vsftpd daemon as so:

vsftpd restart

EDIT

You may also need to set ssl_enable=YES for this to take effect (as pointed out by Tegran in the comments)

Related questions

How to determine SSL cert expiration date from a PEM encoded certificate?

If I have the actual file and a Bash shell in Mac or Linux, how can I query the cert file for when it will expire? Not a web site, but actually the certificate file itself, assuming I have the …

Read More
Unable to establish SSL connection upon wget on Ubuntu 14.04 LTS

I tried to download an image through wget but I got an error: Unable to establish SSL connection. wget https://www.website.com/image.jpg --2015-02-26 01:30:17-- https://www.website.com/image.jpg Resolving www.website.com (www.…

Read More
Turn a simple socket into an SSL socket

I wrote simple C programs, which are using sockets ('client' and 'server'). (UNIX/Linux usage) The server side simply creates a socket: sockfd = socket(AF_INET, SOCK_STREAM, 0); And then binds it to sockaddr: bind(sockfd, (struct sockaddr *) &serv_…

Read More