I had an ftp configured through vsftpd limited to ssl (tls) connections on Slackware64 14.1. I decided to upgrade to 14.2, Connecting to the server still works but now I am getting disconnects when trying to LIST larger directories. The error is:
Code:
GnuTLS error -15: An unexpected TLS packet was received.
Things I have tried:
adding a line to my vsftp.conf file: enable_writeable_chroot=YES
reinstalling gnutls
downgrading to vsftpd 3.0.2 (same error), 2.3.4 (complains about a missing ssl.so file... ssl package too new?)
creating a new self-signed certificate
logging the protocol (stops at LIST)
increasing accept/connect timeouts
nothing seems to work.
Here is my config, if an option is missing, it is default:
Code:
background=YES
listen=YES
listen_address=<removed> (this is correct)
pasv_enable=YES
pasv_addr_resolve=YES
pasv_address=<removed> (this is correct)
#
# User to run daemon as
nopriv_user=vsftp
ftp_username=ftp
#
# Ftp ports (the following port options are correct and have the correct ports forwarded on the router)
connect_from_port_20=YES
ftp_data_port=20
listen_port=21
pasv_min_port=8001
pasv_max_port=8050
#
# SSL (force options for a SSL only server)
ssl_enable=YES
ssl_tlsv1=YES
ssl_ciphers=HIGH
rsa_cert_file=/etc/ssl/certs/server.crt
rsa_private_key_file=/etc/ssl/private/server.key
require_ssl_reuse=NO
#
# Timeouts
accept_timeout=10
connect_timeout=10
idle_session_timeout=3600
#
# Information messages
setproctitle_enable=YES
ftpd_banner=Welcome to the my ftp.
#
# Access limits and controls
write_enable=YES
max_clients=10
max_per_ip=3
#
# Preferences
hide_ids=YES
#
# Anonymous FTP options
anonymous_enable=NO
#
# Local user access
local_enable=YES
local_root=/ftp/
local_max_rate=500000
local_umask=0022
chroot_local_user=YES
chroot_list_enable=YES
chroot_list_file=/etc/vsftpd.chroot_list (This exists, is writeable by vsftpd:ftp and has one user in it.)
allow_writeable_chroot=YES
virtual_use_local_privs=YES
#
# Logging
vsftpd_log_file=/var/log/vsftpd.log
xferlog_enable=YES
Any help is appreciated, TIA.
