Author Topic: TLS problem  (Read 663 times)

0 Members and 1 Guest are viewing this topic.

Offline
***
TLS problem
« on: September 30, 2017, 01:32:45 PM »
Hello.

I use Let's Encrypt SSL for domain.
When I connect to server via FTP server try to use TLS but I get error:

Server sent unsorted certificate chain in violation of the TLS specifications

How to fix it ?

Offline
***
Re: TLS problem
« Reply #1 on: October 01, 2017, 05:31:52 PM »
I think, CA bundle is missing from the SSL Certificate, can you check your SSL here  https://www.sslshopper.com/ and confirm?
https://www.24x7servermanagement.com/
Server Management, Server Security, Server Monitoring.
India's Leading Managed Service Provider !!

Offline
***
Re: TLS problem
« Reply #2 on: October 27, 2017, 12:28:10 PM »
This is not certifate problem.
As I see there is no configuration for TLS in FTP config file.
This should be fixed by CWP developers.

Offline
*****
Re: TLS problem
« Reply #3 on: October 27, 2017, 01:08:22 PM »
This is not certifate problem.
As I see there is no configuration for TLS in FTP config file.
This should be fixed by CWP developers.
try to restart ftp serve and check.

Offline
***
Re: TLS problem
« Reply #4 on: October 27, 2017, 05:23:54 PM »
really
restart FTP is the answer from CWP staff ?

Can You tell me how restart could add missed configuration ?

As I can see for example here:
https://www.howtoforge.com/tutorial/pureftpd-tls-on-centos/

there is no
CertFile             
option in orginal config file pure-ftpd.conf on CWP panel

I found some info about PureFtp TLS and  Let'sEncrypt:
https://www.howtoforge.com/community/threads/letsencrypt-and-pure-ftpd.72000/
https://www.linuxquestions.org/questions/linux-server-73/pure-ftpd-with-tls-and-letsencrypt-certificate-4175613787/
« Last Edit: October 27, 2017, 05:31:45 PM by become »

Offline
*
Re: TLS problem
« Reply #5 on: October 31, 2017, 02:01:24 PM »
restart command will show you error message so its the place where to start when searching for issue.

if this is certificate related you can try to save your hostname again, it should generate required certificates.
VPS & Dedicated server provider with included FREE Managed support for CWP.
http://www.studio4host.com/

*** Don't allow that your server or website is down, choose hosting provider with included expert managed support for your CWP.

Offline
**
Re: TLS problem
« Reply #6 on: November 25, 2017, 09:40:40 AM »
Same problem here, any fix for it? FTP only, SFTP works fine.

EDIT:  Ok, this helps. But that shouldn't be fix for CWP's problems.
https://www.howtoforge.com/tutorial/pureftpd-tls-on-centos/
« Last Edit: November 25, 2017, 09:49:04 AM by Gogo »