WU-FTPD 2.6.1 release notes (5900-1547, January 2011)
Table Of Contents
- WU-FTPD 2.6.1 release notes
- Contents
- 1 WU-FTPD 2.6.1 Release Notes
- Announcement
- What Is In This Version
- WU-FTPD 2.6.1 Features
- Support for TLS/SSL
- Cryptography Algorithm
- Prerequisites for Configuring the TLS/SSL Feature
- Certificates and Authorities
- Generating Certificates and Keys Using OpenSSL 0.9.7m
- Configuring a WU-FTPD TLS Server and an FTP Client
- Configuring an FTP Server in a TLS/SSL Environment
- Configuring an FTP Client in a TLS/SSL Environment
- Basic Configuration for Secured File Transfer
- Virtual FTP Support
- Setting up Virtual FTP Support
- Support for Virtual FTP
- Without ftpservers (4) File
- Usage
- The virtual address allow usernameand virtual address deny username directives
- The virtual address private directive
- The virtual address root path and virtual address banner path directives
- The virtual address logfile path directive
- The virtual address hostname string directive
- The virtual address root path and virtual address email string directives
- The virtual address incmail emailaddress directive
- The virtual address mailfrom emailaddress directive
- Usage
- With ftpservers(4) File
- Usage
- The virtual address allow username and virtual address deny username directives
- The virtual address private directive
- The root path directive
- The banner path directive
- The logfile path directive
- The hostname some.host.name directive
- The email emailaddress directive
- The incmail emailaddress directive
- The mailfrom emailaddress directive
- Usage
- Without ftpservers (4) File
- Setting up a Virtual FTP Server
- The privatepw Utility
- New Clauses in the /etc/ftpd/ftpaccess File
- Enabling the Identification Protocol (RFC 1413)
- New Feature Related to Data Transfer
- Field Added to the /var/adm/syslog/xferlog File
- Command-Line Options
- IPv6 Support
- HP-Specific Features
- Other Features
- Support for TLS/SSL
- Changed and Removed Features
- Compatibility and Installation Information
- Known Problems and Limitations
- Related Information
- Defects Fixed in This Release
cp /opt/openssl/misc/newkey.pem
/etc/ftpd/security/ftpd-rsa-key.pem
cp /opt/openssl/misc/newcert.pem
/etc/ftpd/security/ftpd-rsa-cert.pem
The FTP server is now ready with the signed public certificate and the private key.
Creating DSA Certificates and Keys
This section provides an example to create DSA certificates and keys.
NOTE: You must create DSA certificates only if you want to use DSA certificates instead
of RSA certificates.
Following is an example to create DSA certificates and keys:
1. Create DSA parameters:
openssl dsaparam -out dsap.pem 1024
2. Create a DSA CA certificate and private key:
openssl req -x509 -newkey dsa:dsap.pem -keyout cacert.pem
-out cacert.pem
3. Create the CA directories and files:
/opt/openssl/misc/CA.pl -newca
Enter cacert.pem when prompted for the CA file name.
4. Create a DSA certificate request and private key (a different set of parameters can
optionally be created first):
openssl req -out newreq.pem -newkey dsa:dsap.pem
5. Sign the request:
CA.pl -signreq
The newcert.pem and privkey.pem files are created. newcert.pem is the
certificate that must be loaded by ftpd and cacert.pem is the CA certificate that
must be loaded by FTP to verify the server certificate.
WU-FTPD 2.6.1 Features 13