Ahh, there it is... I knew I had read it before, but couldn't find it when I was to report this problem. Thanks Laryllan! Lots of information there... possible solutions seems to be: upgrading proftpd, upgrading openssl or even downgrading proftpd.
I have now temporarily sidestepped this problem by downgrading proftpd. The following parameters was considered in this decision: 1. I don't want to build stuff and inject manually in my system (too much job to maintain securely in the long run). 2. I couldn't find an upgraded Ubuntu package of openssl (this would otherwise also solved the problem. See Laryllan's link) 3. Reverting to Ubuntu 9.10 seemed like... overreacting! 4. It's a plus if an "apt-get upgrade" can be used to correct "the fix" later on. If someone is interested in exactly how I downgraded... here comes details: ----------------------------------------------------------- STEP 1: I downloaded an older package of proftpd from the previous Ununtu release: http://packages.ubuntu.com/karmic/proftpd-basic (in my case: proftpd-basic_1.3.2-3_i386.deb) STEP 2: I then removed the proftpd installed in my system: sudo apt-get remove proftpd STEP 3: Thereafter did I install the downloaded version: sudo dpkg --install proftpd-basic_1.3.2-3_i386.deb STEP 4: Next I commented the "TLSOption AllowClientRenegotiations" line in the tls.conf file: sudo vim /etc/proftpd/tls.conf STEP 4b: The line now looking like this: #TLSOptions AllowClientRenegotiations STEP 5: Starting the downgraded ftp server: sudo /etc/init.d/proftpd start FINAL STEP: I successfully connected to my downgraded ftp server with a Filezilla Client. ----------------------------------------------------------- Running "apt-get upgrade" now will of course upgrade and ruin what we just accomplished. But I guess if I have to upgrade the system I just have to redo the STEPS 1, 2, 3 and 5 from above and I'm back "off" track again. OUTPUT FROM: sudo apt-get remove proftpd ======================================== Reading package lists... Done Building dependency tree Reading state information... Done Note, selecting proftpd-basic instead of proftpd The following packages were automatically installed and are no longer required: openbsd-inetd Use 'apt-get autoremove' to remove them. The following packages will be REMOVED: proftpd-basic 0 upgraded, 0 newly installed, 1 to remove and 0 not upgraded. After this operation, 2,187kB disk space will be freed. Do you want to continue [Y/n]? (Reading database ... 56550 files and directories currently installed.) Removing proftpd-basic ... * Stopping ftp server proftpd [ OK ] Processing triggers for man-db ... Processing triggers for ureadahead ... OUTPUT FROM FIRST ATTEMPT: sudo /etc/init.d/proftpd start ========================================================= * Starting ftp server proftpd - mod_tls/2.2.1: compiled using OpenSSL version 'OpenSSL 0.9.8g 19 Oct 2007' headers, but linked to OpenSSL version 'OpenSSL 0.9.8k 25 Mar 2009' library - Fatal: TLSOptions: : unknown TLSOption 'AllowClientRenegotiations' on line 39 of '/etc/proftpd/tls.conf' [fail] OUTPUT FROM SECOND ATTEMPT (after editing tls.conf): sudo /etc/init.d/proftpd start ========================================================= * Starting ftp server proftpd - mod_tls/2.2.1: compiled using OpenSSL version 'OpenSSL 0.9.8g 19 Oct 2007' headers, but linked to OpenSSL version 'OpenSSL 0.9.8k 25 Mar 2009' library [ OK ] LOG FROM: FileZilla Client (v3.3.2.1) ==================================== Status: Connecting to 192.168.0.202:21... Status: Connection established, waiting for welcome message... Response: 220 ProFTPD 1.3.2 Server ready. Command: AUTH TLS Response: 234 AUTH TLS successful Status: Initializing TLS... Status: Verifying certificate... Command: USER AUser Status: TLS/SSL connection established. Response: 331 Password required for AUser Command: PASS ******** Response: 230 User AUser logged in Command: OPTS UTF8 ON Response: 200 UTF8 set to on Command: PBSZ 0 Response: 200 PBSZ 0 successful Command: PROT P Response: 200 Protection set to Private Status: Connected Status: Retrieving directory listing... Command: PWD Response: 257 "/" is the current directory Status: Directory listing successful OUTPUT FROM: apt-cache policy proftpd-basic ================================== proftpd-basic: Installed: 1.3.2-3 Candidate: 1.3.2c-1 Version table: 1.3.2c-1 0 500 http://se.archive.ubuntu.com/ubuntu/ lucid/universe Packages *** 1.3.2-3 0 100 /var/lib/dpkg/status -- proftpd 1.3.2c with SSL is useless in Ubuntu 10.04 https://bugs.launchpad.net/bugs/580512 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
