![]() Not really a wizard of the lftp, but sounds like a possibility. Have tried saving the certificate in a well-know location (file/directory) and specifying it in the startup/rc file for lftp? BEGIN CERTIFICATE-M MIIDITCCAoqgAwIBAgIQL9+89q6RUm0PmqPfQDQ+mjANBgkqhkiG9w0BAQUFADBMM To solve 'this' open it with Write or Notepad++ and have it convert it to Windows 'style' Try to run openssl x509 -text -inform DER -in servercert. Some people prefer to see full protocol debug, On startup, lftp executes ~/.lftprc and ~/.lftp/rc (or ~/.con‐įig/lftp/rc if ~/.lftp does not exist). I guess any of these can be specified in your startup/rc file(s) for lftp: Settings Use sftp:connect-program and fish:connect-program respectively Use specified directory as Certificate Revocation List certifi‐ Use specified file as Certificate Revocation List certificate. Server corresponds to the host name in its certificate. When true, lftp checks if the host name used to connect to the Use specified directory as Certificate Authority certificate Use specified file as Certificate Authority certificate. What would be the actions to get the server certificate added to that store ?ĭoing man lftp the following "certificate" related settings: ssl:ca-file (path to file) ![]() I am wondering if this is the correct trusted certificate store where lftp verifies the server certificate against.Ĭould it be /etc/pki/tls/certs/ ? I copied the cert.crt file in /etc/pki/ca-trust/source/anchors/ and executed "update-ca-trust extract", so the certificate is in the trusted certificate store at /etc/pki/ca-trust/extracted/openssl/. Now for reason of security, I want this certificate verified. The transfers are working and TLS encrypted with "set ssl: verify certificate no" and "ssl:set ssl:ca-file /home/user/cert.crt" I got the certificate with the command: openssl s_client -connect :21 -starttls ftp My counterpart is using a self signed certificate on the ftps server. I searched the interwebs like crazy, did everything possible and my lftp client still says: Fatal error: Certificate verification: Not trusted when opening an ftps session.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |