vsftpd & SSL Fail No Logs
Thanks for reading.
I am having troubles getting vsftpd to work with ssl.
Fedora 16
So far:
yum install vsftpd
system-config-firewall
enable ftp...
setsebool -P ftp_home_dir 1
Works great without SSL at this point.
openssl req -x509 -nodes -days 365 -newkey rsa:1024 -keyout #rsa_cert_file=/etc/pki/tls/certs/vsftpd.pem -out #rsa_cert_file=/etc/pki/tls/certs/vsftpd.pem
I've run restorecon on the pem file.
change my vsftpd.conf adding:
rsa_cert_file=#rsa_cert_file=/etc/pki/tls/certs/vsftpd.pem
ssl_enable=YES
force_local_data_ssl=YES
force_local_logins_ssl=YES
My /var/log/messages output
Mar 15 22:16:33 pckps systemd[1]: vsftpd.service: control process exited, code=exited status=1
Mar 15 22:16:33 pckps systemd[1]: Unit vsftpd.service entered failed state.
output of systemctl status vsftpd:
vsftpd.service - Vsftpd ftp daemon
Loaded: loaded (/lib/systemd/system/vsftpd.service; disabled)
Active: failed since Sat, 17 Mar 2012 11:20:50 -0400; 24s ago
Process: 5105 ExecStart=/usr/sbin/vsftpd /etc/vsftpd/vsftpd.conf (code=exited, status=1/FAILURE)
Main PID: 5066 (code=killed, signal=TERM)
CGroup: name=systemd:/system/vsftpd.service
At this point I disabled selinux
setenforce 0
Double checked se linux with sestatus:
SELinux status: enabled
SELinuxfs mount: /sys/fs/selinux
Current mode: permissive
Mode from config file: enforcing
Policy version: 26
Policy from config file: targeted
Have found a second “error” in /var/log/audit/audit.log:
type=SERVICE_START msg=audit(1331865619.184:4133): user pid=0 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg=': comm="vsftpd" exe="/bin/systemd" hostname=? addr=? terminal=? res=failed'
I'm still looking up how to properly read the audit logs. I don't believe this has anything to do with the issue that I am having.
No mater how I configure the log options in vsftpd.conf I can not get it to output to /var/log/vsftpd.log.
Thanks for any suggestions!
