letsencryp certificate for ftp etc.

Hi,
i have found the following link where is desribed how to arrange a letsencrypt certificate for services like ftp.

https://en.linuxportal.info/tutoria...s#ssl-kiterjesztese-a-tobbi-webszolgaltatasra

This is from 2018 so i guess it is not fitting for ISPConfig 3.3.

Is there description for doing this with ISPConfig 3.3 on Ubuntu 24.04 with Apache and PureFTP?
The user uses Filezilla and that does not accept a selfsigned certificate (like there is now) as secure.

Thanks,
Jan

 

This should already be set up correctly. The pureftpd config sets the certificate to /etc/ssl/private/pure-ftpd.pem which is a symlink to /usr/local/ispconfig/interface/ssl/ispserver.pem

Are you sure you get a self-signed certificate? Or is it rather that you connect via a hostname that is not the hostname of the server itself but rather a domain of a webspace on that host and get a name mismatch error?

 

There seems to be a problem between Filezilla and PureFTP when using TLS.
Alternatively it is advised to use SSH/SFTP.
I have made an SSH-user for SFTP, the only thing that i cannot find yet is how to prevent the SFTP/SSL-user from seeing and/or downloading all serverfiles.
Jan

 

I must miss something, i made the user in ISPConfig "jailed" but was still able to download /etc/hosts.
It is not that important because i am the only user anyway.
Regasds Jan

 

Thank you Till for explaining.
I have no experience with jails, were never in it ;-)
I guess it is a good moment to start reading about chroot and jails.
Regards,
Jan

 

Just use a different ftp-client.
The problem lies between pure-ftpd and filezilla.
Most other clients, like winscp, have no problems.

 

Thnaks remkoh,

This is for a user that uses Filezilla. I am a Desktop-Linux-user with KDE and use Krusader or upload with rsync.

Regards,
Jan