Is FTPS considered insecure? proftpd example:
ServerName "MH FTP server" ServerType standalone DefaultServer on AccessGrantMsg "User %u has successfully logged into MH FTP server." RequireValidShell off UseReverseDNS off IdentLookups off Port 0 UseIPv6 off MaxInstances 30 <Global> Umask 022 PassivePorts 2990 3000 MultilineRFC2228 on ShowSymlinks off DefaultTransferMode binary MaxClients 30 "ERROR: reached maximum user limit (%m)." MaxClientsPerUser 20 "ERROR: reached maximum connections per user limit (%m)." MaxLoginAttempts 3 DefaultRoot ~ AllowOverwrite on AllowOverride off AllowRetrieveRestart on AllowStoreRestart on DelayEngine on TLSEngine on TLSLog /var/log/proftpd_tls.log TLSProtocol TLSv1 TLSv1.1 TLSv1.2 TLSRequired on TLSRSACertificateFile /etc/ssl/CA-HMN/certs/ftpservers_HM_cert.pem TLSRSACertificateKeyFile /etc/ssl/CA-HMN/certs/ftpservers_HM_key_nopassphrase.pem TLSVerifyClient off TLSOptions AllowClientRenegotiations NoSessionReuseRequired ClamAV on ClamServer 127.0.0.1 ClamPort 3310 <Limit SITE_CHMOD> DenyAll </Limit> Include /etc/proftpd/user_list </Global> <VirtualHost 10.1.2.1> ServerName "MHSC FTP server" Port 21 MasqueradeAddress mhsc.domain.org TransferLog /var/log/proftpd_xfer_mhsc.log </VirtualHost> <VirtualHost 10.1.3.1> ServerName "MHSI FTP server" Port 21 MasqueradeAddress mhsi.domain.org TransferLog /var/log/proftpd_xfer_mhsi.log </VirtualHost> User ftp Group ftp DebugLevel 0 SystemLog /var/log/proftpd.log WtmpLog off _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
