ssl certificate renewal for vsftpd on ubuntu
I am currently using vsftpd with ssl support
Currently when the certificate expires I have to generate a new certificate and distribute that new certificate among the clients. Ideally I would like automatic renewal of the certificate and that certificate to then be transferred to the client upon connection. I am relatively new to Linux and this is a problem I cant seem to overcome myself, any advice or links to how-to's would be appreciated. The ftp client I am using is curlFTPfs as I need to ftp directory to be mounted locally, below is the command with debugging: Code:
root@Fileserver:/scripts# curlftpfs -v -o ssl -o cacert=/certificate/ssl-cert-snakeoil.pem -o no_verify_hostname ftp://ftpaccount:ftppassword@192.168.1.254 /backup |
Why do your certificates expire every month? Usually they are valid for 1-2 years. If you are not a bank or an intelligence agency, you could as well go up to 5 years.
Anyway, if you really need to automate the process of certificate renewal then I suggest that you write a script to 1. generate the new certificate 2. put it somewhere on a known path inside the FTP so that users can download the new cert 3. restart your ftp server. Shouldn't be that difficult. |
Quote:
|
All times are GMT -5. The time now is 04:32 PM. |