Problem with vsftpd option force_local_data_ssl=YES.
 

Hi i run vsftp with not problem. I activated these options:

ssl_enable=YES
force_local_logins_ssl=YES
rsa_cert_file=/usr/share/ssl/certs/vsftpd.pem

But when i use force_local_data_ssl=YES, then i got (gFTP output):

220 Bienvenue sur mon service FTP.
AUTH TLS

234 Proceed with negotiation.
SSL connection established using TLSv1/SSLv3 (DES-CBC3-SHA)
PBSZ 0

200 PBSZ set to 0.
PROT C

200 PROT now Clear.
USER fatcat

331 Please specify the password.
PASS xxxx
230 Login successful.
SYST

215 UNIX Type: L8
TYPE I

200 Switching to Binary mode.
PWD

257 "/home/fatcat"
Loading directory listing /home/fatcat from server (LC_TIME=fr_FR@euro)
PASV

227 Entering Passive Mode (192,168,0,2,59,42)
LIST -L

521 Data connections must be encrypted.
Invalid response '5' received from server.




I just spent two hours on it, that's why i request your help.

Ok i got this error because my ftp client didn't accept encrypted data.
So i switched to lftp. I had to provide "set ssl-protect-data 1" at the end of /etc/lftp.conf.
Now it works. I can connect and transfer data. I checked ip packets with ethereal, and the data is encrypted.