Go Back   FlashFXP Forums > > > >

ioFTPD General New releases, comments, questions regarding the latest version of ioFTPD.

Reply
 
Thread Tools Rate Thread Display Modes
Old 12-01-2005, 08:06 PM   #1
Coffee
Senior Member
FlashFXP Registered User
ioFTPD Foundation User
 
Join Date: Jun 2003
Posts: 100
Default SSL config problem

Hello,

First of all i used search and read through the forum and the KB.

I installed SSL on different boxes without problems.
One box giving me headaches though, it's runing winXP ( like the others).

on Loggin i get
504 AUTH %s unsupported.
Failed SSL/TLS negotiation, disconnected

Q: What does "504 AUTH %s unsupported." mean ? Appears on login, when SSL is enabled.
A: This error means that ioFTPD SSL isn't configured correctly.

It can be for any of those reasons:
- You didn't install your SSL certificate correctly; you installed the certification in another user's than the one running ioFTPD; you imported in the wrong database; etc.
- You're using the wrong certificate name in ioFTPD.ini
- You're using an invalid setting for SSL Cipher_Strength or Protocol in ioFTPD.ini

Been over the last two and am sure they are ok.

I'm using ioftpd on ioservice and read about the two added things in .env and did all that.

When trying to run the ssl.bat script i get the following error:

200-Error: Can't create the key of the subject ('xxx.no-ip.com')
200-Failed

I also tried to use the rsa_keygen.bat and import the certificate into trusted root but that wont work either.

Delled all certificates entrys, tried different makecerts.

In older threads on the board i see some guys have the same issues and some links to solving it, but that are dead links refering to the old www.ioftpd.com site.

I hope any1 has a new idea i can try to solve this issue, it's giving me headaches by now.

Greetz Coffee
Coffee is offline   Reply With Quote
Old 12-01-2005, 08:42 PM   #2
EwarWoo
Senior Member
FlashFXP Registered User
ioFTPD Registered User
 
Join Date: Oct 2002
Posts: 462
Default

Have u restarted ioFTPD since u installed the cert?
Is the cert name spelt correctly?
Are you trying to use TLS when configged for SSL?
EwarWoo is offline   Reply With Quote
Old 12-02-2005, 04:43 AM   #3
Coffee
Senior Member
FlashFXP Registered User
ioFTPD Foundation User
 
Join Date: Jun 2003
Posts: 100
Default

Yes did all that,

cert name spelled correctly in ioftpd.ini
restarted ioftpd
using SSL

### Encryption ###
#
Require_Encrypted_Auth = *
Require_Encrypted_Data = !*
Certificate_Name = xxx.no-ip.com
Explicit_Encryption = True
Encryption_Protocol = SSL3
Min_Cipher_Strength = 128
Max_Cipher_Strength = 168

Think it has something to due with that can't create key error and fr that not installing the certificate as the right user ioFTPD is running on. But can't find ways to fix that part.
Coffee is offline   Reply With Quote
Old 12-02-2005, 06:06 AM   #4
EwarWoo
Senior Member
FlashFXP Registered User
ioFTPD Registered User
 
Join Date: Oct 2002
Posts: 462
Default

Ah, sorry bud, missed that bit.
I actually have a site doing this myself, just wont let me create a cert no matter what I do. I gave up on it but hopefully someone else as an answer, I'd be interested in that too
EwarWoo is offline   Reply With Quote
Old 12-02-2005, 07:46 AM   #5
Pu$u
Member
 
Join Date: Jul 2004
Posts: 36
Default

u should update your board profile if u have a reg. ioFTPD
because u say u have ioFTPD 5.8.5r
Pu$u is offline   Reply With Quote
Old 12-03-2005, 09:37 PM   #6
Wrez
Junior Member
 
Wrez's Avatar
 
Join Date: Dec 2005
Posts: 26
Default

interesting i never knew one could do this !
Wrez is offline   Reply With Quote
Old 12-08-2005, 02:48 AM   #7
Coffee
Senior Member
FlashFXP Registered User
ioFTPD Foundation User
 
Join Date: Jun 2003
Posts: 100
Default

Quote:
Originally Posted by Pu$u
u should update your board profile if u have a reg. ioFTPD
because u say u have ioFTPD 5.8.5r
Intresting reply , pffff
Coffee is offline   Reply With Quote
Old 12-08-2005, 03:22 AM   #8
EwarWoo
Senior Member
FlashFXP Registered User
ioFTPD Registered User
 
Join Date: Oct 2002
Posts: 462
Default

Not that interesting no, but perfectly valid, I woulda replied the exact same had I noticed
EwarWoo is offline   Reply With Quote
Old 12-08-2005, 05:59 AM   #9
Coffee
Senior Member
FlashFXP Registered User
ioFTPD Foundation User
 
Join Date: Jun 2003
Posts: 100
Default

I can't find where to do that, so tell me instead of flaming and going off topic please
Coffee is offline   Reply With Quote
Old 12-09-2005, 04:38 AM   #10
scull
Senior Member
ioFTPD Scripter
 
Join Date: May 2003
Posts: 159
Default Same here

Quote:
Originally Posted by Coffee
Yes did all that,

cert name spelled correctly in ioftpd.ini
restarted ioftpd
using SSL

### Encryption ###
#
Require_Encrypted_Auth = *
Require_Encrypted_Data = !*
Certificate_Name = xxx.no-ip.com
Explicit_Encryption = True
Encryption_Protocol = SSL3
Min_Cipher_Strength = 128
Max_Cipher_Strength = 168

Think it has something to due with that can't create key error and fr that not installing the certificate as the right user ioFTPD is running on. But can't find ways to fix that part.
Hi i have the EXACT same problem, have several WinXp Sp2 computers running ioFTPD and SSL/TLS without problems ... BUT one other computer ( winxp sp2 ) wount generate the key , gets the same error message.

Mouton told me that it would work if i have the latest updates , SO i updated my windows and i downloaded all the files needed for cert making from microsoft. BUT with the same result.

//scull
scull is offline   Reply With Quote
Old 12-10-2005, 03:52 AM   #11
Wrez
Junior Member
 
Wrez's Avatar
 
Join Date: Dec 2005
Posts: 26
Default

how secret is this ****en data that u need it ssl it lol prolly pr0n
Wrez is offline   Reply With Quote
Old 01-06-2006, 08:29 AM   #12
Cule
Junior Member
 
Join Date: Jan 2006
Posts: 8
Default

where do you guys download makecert.exe and certmgr.exe? Im helping a good friend of mine setting up ssl, but we can't find the two .exe files on microsoft.com or any of their sister sites. Can anyone give us a link please?
Cule is offline   Reply With Quote
Reply

Tags
504, auth, certificate, ssl, wrong

Thread Tools
Display Modes Rate This Thread
Rate This Thread:

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT -5. The time now is 05:44 AM.

Parts of this site powered by vBulletin Mods & Addons from DragonByte Technologies Ltd. (Details)