How to Enable SSL Support for VSFTPD – RHEL 6 – CentOS 6

Updated on November 26, 2017
1 Star2 Stars3 Stars4 Stars5 Stars (2 votes, average: 5.00 out of 5)
Loading...

Enable SSL Support for VSFTPD – RHEL 6 – CentOS 6 FTP, or file transfer protocol, was a popular way to transfer files between local and remote computers in the past. Traditional FTP is rather insecure. When you login, your username and password are transmitted in clear text, raising the possibility of your credentials being sniffed.

If you still want to use FTP instead of a more secure alternative like SFTP, which uses the SSH protocol to implement file transfers, you can secure it somewhat by configuring FTP to use SSL.

You can quite easily configure your vsftpd server to use OpenSSL encryption, so that usernames & password, and even data files, are encrypted during transfer. It takes just a few simple steps.

Related Article  Install and Configure Primary (Master) BIND DNS Server - RHEL 6 - CentOS 6

In this tutorial, we’ll enable SSL support for VSFTPD in RHEL 6 – CentOS 6

 

 

Steps:
1. Check whether the latest mod_ssl installed
locate mod_ssl

2. Install the latest mod_ssl via yum
yum install mod_ssl

3. /etc/pki/tls/private/localhost.key – This is the private key of the host
/etc/pki/tls/certs/localhost.crt – This is the public key

Note: We’ll tell these files to vsftpd in vsftpd.conf file

4. Let’s try to connect vsftpd server without SSL first by using FileZilla
Normal ftp server is running

5. Enable SSL support

ssl_enable=YES
ssl_tlsv1=YES
rsa_cert_file=/etc/pki/tls/certs/localhost.crt
rsa_private_key_file=/etc/pki/tls/private/localhost.key

6. Restart vsftpd service
service vsftpd restart