Welcome to the most active Linux Forum on the web.
Go Back > Forums > Linux Forums > Linux - Software
User Name
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.


  Search this Thread
Old 03-26-2006, 05:28 PM   #1
Registered: Nov 2005
Posts: 90

Rep: Reputation: 15
Trouble creating and using rsa keys for vsftpd on FedoraCore4.

I tried the following commands.
openssl genrsa -des3 -out vsftpd.pem 1024

I specified where the file exists in the vsftpd.conf file.
Still nothing.

I'm not sure if I'm creating these keys correctly. I am a Linux novice. Details would be appreciated, especially if somebody has used ssl with vsftpd.

I also tried.
openssl req -x509 -nodes -newkey rsa:1024 -keyout /etc/ssl/private/vsftpd.pem -out

vsftpd still outputs this error
500 OOPS: SSL: cannot load RSA certificate

I really need some help here!

Old 03-26-2006, 07:13 PM   #2
LQ Guru
Registered: Aug 2001
Location: Fargo, ND
Distribution: SuSE AMD64
Posts: 15,733

Rep: Reputation: 682Reputation: 682Reputation: 682Reputation: 682Reputation: 682Reputation: 682
I think that the problem may be in the permissions of the vsftp.pem file. Or vsftp is chrooted and you need to copy the file to the jailed etc/ directory. I don't know whether vsftp will start out reading from the /etc directory as the root user, and then demote itself as a vsftp system user. You will need to read the documentation.

Some programs like ssh will refuse to run if the permissions allow anyone to read the private key.
This could be the cause of the "cannot load RSA certificate" message.
Old 03-27-2006, 08:20 AM   #3
Registered: Nov 2005
Posts: 90

Original Poster
Rep: Reputation: 15
It was an xinetd thing

I had to add it to xinetd. Once it launched from there then it was fine. Now I'm getting unable to bind to ipv4 socket. I have to add one more virtual address to the machine, change the listen directive in vsftpd.conf and I should be good to go.

If I have any more problems I'll post here.



Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Konqueror-RSA Keys XaViaR Linux - General 5 12-03-2006 05:28 AM
SSH Forcing users to use RSA keys XaViaR Linux - Security 8 07-07-2005 12:42 AM
RSA Keys for SSH XaViaR Linux - General 4 07-02-2005 09:15 AM
Where to install RSA keys? KMorley Linux - Newbie 1 02-24-2005 02:33 PM
Mulitiple RSA Keys Reformed Linux - Software 3 12-13-2003 02:02 PM > Forums > Linux Forums > Linux - Software

All times are GMT -5. The time now is 01:27 PM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration