- 论坛徽章:
- 0
|
我在客户端上使用
./configure CC=gcc CFLAGS='-O3' --prefix=/home/kkk/lftp --without-gnutls --with-openssl安装支持ssl/tls协议的lftp
服务器上使用
./configure CC=gcc CFLAGS='-O3' --prefix=/home/kkk/proftpd --enable-autoshadow --enable-ctrls --with-modules=mod_tls安装proftpd
并且proftpd.conf中有关tls/ssl的配置如下:
<IfModule mod_tls.c>
TLSEngine on
TLSLog /var/log/proftpd-tls.log
TLSProtocol TLSv1
#TLSProtocol SSLv23
# Are clients required to use FTP over TLS when talking to this server?
TLSRequired off
# Server's certificate
TLSRSACertificateFile /etc/tls/private/server.cert.pem
TLSRSACertificateKeyFile /etc/tls/private/server.key.pem
# CA the server trusts
#TLSCACertificateFile /etc/pki/tls/proftpd/root.cert.pem
# Authenticate clients that want to use FTP over TLS?
TLSVerifyClient off
# Allow SSL/TLS renegotiations when the client requests them, but
# do not force the renegotations. Some clients do not support
# SSL/TLS renegotiations; when mod_tls forces a renegotiation, these
# clients will close the data connection, or there will be a timeout
# on an idle data connection.
TLSRenegotiate required off
</IfModule>
现在使用lftp想访问proftpd 随便运行一个ls命令 提示出错:
<--- 220 ProFTPD 1.3.1 Server (ProFTPD)
---> FEAT
<--- 211-Features:
MDTM
AUTH TLS
PBSZ
PROT
REST STREAM
SIZE
<--- 211 End
---> AUTH TLS
<--- 234 AUTH TLS successful
---> USER ftp
**** SSL_connect: unknown protocol
---- Closing control socket
ls: Fatal error: SSL_connect: unknown protocol
服务器端proftpd日志如下
May 15 21:42:36 mod_tls/2.1.2[25070]: using default OpenSSL verification locations (see $SSL_CERT_DIR environment variable)
May 15 21:42:36 mod_tls/2.1.2[25070]: TLS/TLS-C requested, starting TLS handshake
May 15 21:42:36 mod_tls/2.1.2[25070]: unable to accept TLS connection:
(1) error:1408F10B:SSL routines:SSL3_GET_RECORD:wrong version number
May 15 21:42:36 mod_tls/2.1.2[25070]: TLS/TLS-C negotiation failed on control channel
请问这是什么原因呢 怎么解决 谢谢
[ 本帖最后由 linuxsmth 于 2008-5-15 22:56 编辑 ] |
|
免费注册
发表于 2008-05-15 22:01