Malin/WPIQ
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Update proftpd tls.conf template

Browse Source 
* Use Mozilla SSL Configuration Generator
This commit is contained in:
VirtuBox
2020-07-15 19:38:42 +02:00
parent 0185c63205
commit dcb0b8f4f7
1 changed files with 16 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

24
wo/cli/templates/proftpd-tls.mustache
View File

@@ -1,12 +1,20 @@
<IfModule mod_tls.c> <IfModule mod_tls.c>
TLSEngine on
TLSLog /var/log/proftpd/tls.log TLSEngine on
TLSProtocol TLSv1.2 TLSRequired on
TLSCipherSuite AES256+EECDH:AES256+EDH TLSLog /var/log/proftpd/tls.log
TLSOptions NoCertRequest AllowClientRenegotiations NoSessionReuseRequired
TLSRSACertificateFile /etc/proftpd/ssl/proftpd.crt # intermediate configuration from ssl-config.mozilla.org
TLSRSACertificateKeyFile /etc/proftpd/ssl/proftpd.key TLSProtocol TLSv1.2 TLSv1.3
TLSCipherSuite ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384
TLSServerCipherPreference off
TLSessionTickets off
TLSOptions NoCertRequest AllowClientRenegotiations NoSessionReuseRequired
TLSRSACertificateFile /etc/proftpd/ssl/proftpd.crt
TLSRSACertificateKeyFile /etc/proftpd/ssl/proftpd.key
TLSVerifyClient off TLSVerifyClient off
TLSRequired on
RequireValidShell no RequireValidShell no
</IfModule> </IfModule>