I think you should be fine if you add: config.listeners.default.data-connection.class=org.apache.ftpserver.Defa ultDataConnectionConfig
and config.listeners.default.data-connection.ssl.class=org.apache.ftpserver. ssl.DefaultSsl ~ Johan Sigg -----Original Message----- From: John Riley [mailto:[EMAIL PROTECTED] Sent: den 6 mars 2007 16:32 To: ftpserver-dev@incubator.apache.org Subject: Re: Implicit SSL Thanks for your answer. I think I'm almost there now. I changed my configuration according to the link you sent me. But I get an exception when specifiying data-connection. The following configuration works: config.listeners.default.implicit-ssl=true config.listeners.default.ssl.class=org.apache.ftpserver.ssl.DefaultSsl config.listeners.default.ssl.keystore-file=./res/.keystore config.listeners.default.ssl.keystore-password=password config.listeners.default.ssl.keystore-type=JKS config.listeners.default.ssl.keystore-algorithm=SunX509 config.listeners.default.ssl.ssl-protocol=TLS config.listeners.default.ssl.client-authentication=false config.listeners.default.ssl.key-password=password However when adding data-connection to the picture I get the following exception: java.lang.RuntimeException: Failed to create instance of class org.apache.ftpserver.interfaces.DataConnectionConfig Config:config.listeners.default.data-connection.passive.address=localhos t config.listeners.default.data-connection.passive.ports=5000-5010 config.listeners.default.data-connection.ssl.keystore-file=./res/.keysto re config.listeners.default.data-connection.ssl.keystore-password=password config.listeners.default.data-connection.ssl.keystore-type=JKS config.listeners.default.data-connection.ssl.keystore-algorithm=SunX509 config.listeners.default.data-connection.ssl.ssl-protocol=TLS config.listeners.default.data-connection.ssl.client-authentication=false config.listeners.default.data-connection.ssl.key-password=password config.listeners.default.data-connection.passive.address=localhost config.listeners.default.data-connection.passive.ports=5000-5010 config.listeners.default.data-connection.ssl.keystore-file=./res/.keysto re config.listeners.default.data-connection.ssl.keystore-password=password config.listeners.default.data-connection.ssl.keystore-type=JKS config.listeners.default.data-connection.ssl.keystore-algorithm=SunX509 config.listeners.default.data-connection.ssl.ssl-protocol=TLS config.listeners.default.data-connection.ssl.client-authentication=false config.listeners.default.data-connection.ssl.key-password=password I checked out and updated the latest version of trunk. Best Regards John ----- Original Message ----- From: "Niklas Gustavsson" To: ftpserver-dev@incubator.apache.org Subject: Re: Implicit SSL Date: Mon, 05 Mar 2007 22:09:36 +0100 Hi John John Riley wrote: > Hi, > > I browsed the documenation and found that the FTP Server supports > implicit SSL. However, after trying out the snapshot I can't get it to > work. > > I'm using the following configuration with the demo keystore: > > config.socket-factory.class=org.apache.ftpserver.socketfactory.SSLFtpSoc ketFactory > config.socket-factory.address=localhost > config.socket-factory.port=21 > config.socket-factory.ssl.keystore-file=./res/.keystore > config.socket-factory.ssl.keystore-password=password > config.socket-factory.ssl.keystore-type=JKS > config.socket-factory.ssl.keystore-algorithm=SunX509 > config.socket-factory.ssl.ssl-protocol=TLS > config.socket-factory.ssl.client-authentication=false > config.socket-factory.ssl.key-password=password > > When configuring my client for implicit SSL I get the following error: > - Connected. Negotiating SSL session.. > - SSL ERROR: unknown protocol > > And when trying to connect using TLS I get the following errors. > > - Connected to Localhost > - 220 Service ready for new user > - AUTH TLS > - 431 Service is unavailable. > - Failed SSL/TLS negotiation, disconnected > > Except for the SSL the ftp server seems to run smoothly. Whan am I doing > wrong? Can someone please guide through this. If you're using the latest version of trunk (or maybe 1.0-M1 release candidate) you need to be using the listener config rather than socket-factory. See the documentation at: http://cwiki.apache.org/FTPSERVER/tlsssl-support.html If that doesn't do it, please ask here again. /niklas
