Pure-ftpd install with TLS problem.

X

xeryph

Verified User
Joined
Dec 27, 2004
Messages
69
Hi,

I have got problem with installation of SSL in pureftpd. I have got RapidSSL wildcard ssl. I put to /etc/pure-ftpd.pem:

Private Key
My RapidSSL certificate
intermediate SSL
Root SSL

intermediate ssl and root SSL I download from: https://knowledge.digicert.com/generalinformation/INFO1548.html#links

Connection works fine, but I got errors:

Error: Server sent unsorted certificate chain in violation of the TLS specifications

On FTP test ( https://ftptest.net/#result ) there is also problem with SSL/TLS:
Error: Peer certificate chain received in wrong order. The TLS specifications require that each certificate in the chain must directly certify the one preceeding it.


Do you know how to fix it?
 
Maybe this is helpfull too?

pure-ftpd unsorted certificate chain

Hello, i recently moved from proftpd to pure-ftpd. Now when i connect Filezilla works fine but it does show error 1) Error: Server sent unsorted certificate chain in violation of the TLS specifications Any ideas, i am using stock "/etc/pure-ftpd.conf", i guess thats default for new installs...
forum.directadmin.com forum.directadmin.com
 
Not specialy helpded. I had correct SSL - checked with ftptest.net.
Do you have any other ideas?
 
SSL Certificate, use this https://www.ssllabs.com/ssltest/ with your server hostname. Does it come back fine?

if you google the error
xeryph said:
Error: Server sent unsorted certificate chain in violation of the TLS specifications
Click to expand...
You will find posts that the certs are being presented in the wrong order. If you are using a combined cert they have to be united in the correct order

It also could be this

Server keeps saying I have an SSL certificate problem

I set up my server with an Letsencrypt SSL certificate. My Chrome browser seems to be totally fine with that. I get an error within Laravel about an SSL issue. When I try to curl a website that has active SSL (as root user), shell gives me back a message that I seem to be using a self signed...
forum.directadmin.com forum.directadmin.com
maybe a curl issue?
Code: 
cd /usr/local/directadmin/custombuild
./build update
./build clean
./build curl
 
You must log in or register to reply here.
Back
Top