How to secure FTP in Plesk for Linux?

Created:

2017-01-23 23:04:07 UTC

Modified:

2017-08-08 13:09:55 UTC

0

Was this article helpful?


Have more questions?

Submit a request

How to secure FTP in Plesk for Linux?

Question

How to configure secure FTP in Plesk for Linux?

Answer

FTP over SSL can be activated with following steps:

  1. Allow using custom FTPS settings per IP address in Tools & Settings > Security Policy

  2. Configure FTPS in Tools & Settings > IP addresses > Allow both secure FTPS and non-secure FTP connections.

Made sure that the following lines is present in /etc/proftpd.conf:


<IfModule mod_tls.c>
# common settings for all virtual hosts
TLSEngine on
TLSRequired off
TLSLog /var/log/plesk/ftp_tls.log
TLSRSACertificateFile /usr/local/psa/admin/conf/httpsd.pem
TLSRSACertificateKeyFile /usr/local/psa/admin/conf/httpsd.pem
# Authenticate clients that want to use FTP over TLS?
TLSVerifyClient off
# Allow SSL/TLS renegotiations when the client requests them, but
# do not force the renegotations. Some clients do not support
# SSL/TLS renegotiations; when mod_tls forces a renegotiation, these
# clients will close the data connection, or there will be a timeout
# on an idle data connection.
TLSRenegotiate none
# As of ProFTPD 1.3.3rc1, mod_tls only accepts SSL/TLS data connections
# that reuse the SSL session of the control connection, as a security measure.
TLSOptions NoSessionReuseRequired
</IfModule>
Have more questions? Submit a request
Please sign in to leave a comment.