https://wiki.uniformserver.com/index.php?title=FileZilla_Server3:_Implicit_SSL_part_1&feed=atom&action=historyFileZilla Server3: Implicit SSL part 1 - Revision history2024-03-29T14:20:45ZRevision history for this page on the wikiMediaWiki 1.41.0https://wiki.uniformserver.com/index.php?title=FileZilla_Server3:_Implicit_SSL_part_1&diff=4748&oldid=prevOlajideolaolorun: Reverted edits by Upazixorys (Talk); changed back to last version by Ric2010-11-24T07:53:49Z<p>Reverted edits by <a href="/Special:Contributions/Upazixorys" title="Special:Contributions/Upazixorys">Upazixorys</a> (<a href="/index.php?title=User_talk:Upazixorys&action=edit&redlink=1" class="new" title="User talk:Upazixorys (page does not exist)">Talk</a>); changed back to last version by <a href="/User:Ric" title="User:Ric">Ric</a></p>
<a href="https://wiki.uniformserver.com/index.php?title=FileZilla_Server3:_Implicit_SSL_part_1&diff=4748&oldid=4706">Show changes</a>Olajideolaolorunhttps://wiki.uniformserver.com/index.php?title=FileZilla_Server3:_Implicit_SSL_part_1&diff=4706&oldid=prevUpazixorys at 06:16, 24 November 20102010-11-24T06:16:38Z<p></p>
<a href="https://wiki.uniformserver.com/index.php?title=FileZilla_Server3:_Implicit_SSL_part_1&diff=4706&oldid=3933">Show changes</a>Upazixoryshttps://wiki.uniformserver.com/index.php?title=FileZilla_Server3:_Implicit_SSL_part_1&diff=3933&oldid=prevRic: New page: {{Uc nav FileZilla Server3}} '''Implicit SSL''' The previous pages descried how to install the FileZilla server on uniform server. Passwords and data are sent unencrypted over the Interne...2009-11-22T09:17:14Z<p>New page: {{Uc nav FileZilla Server3}} '''Implicit SSL''' The previous pages descried how to install the FileZilla server on uniform server. Passwords and data are sent unencrypted over the Interne...</p>
<p><b>New page</b></p><div>{{Uc nav FileZilla Server3}}<br />
'''Implicit SSL'''<br />
<br />
The previous pages descried how to install the FileZilla server on uniform server. Passwords and data are sent unencrypted over the Internet. Depending on your application and use this is adequate and suitable for most purposes.<br />
<br />
FileZila FTPd overs a much more secure alternative using SSL to encrypt both passwords and data. There are a number of steps required in setting up a secure FTP server hence is relatively difficult. I have split this over two pages making it clearer and hopefully easier to understand.<br />
<br />
The procedure is incremental first create a server certificate ensure it runs on a local network and finally configure for Internet access.<br />
<br />
'''''[[#top | Top]]'''''<br />
== Server certificate ==<br />
FileZilla has a built in certificate generator making this process very easy.<br />
<br />
{|<br />
|-<br />
|valign="top" width="100%"|<br />
==== Enable SSL support ====<br />
* Navigate to folder '''UniServer'''<br />
# Start FileZilla server by double clicking on '''fz_start.bat'''<br />
# Start FileZilla administration interface, double click on '''fz_admin.bat'''<br />
# Select '''Edit > Settings''' <br />
# From the left menu '''click''' on '''SSL/TLS settings''' - A)<br />
# Check '''Enable SSL/TSL support''' - B)<br />
# Default '''Allow explicit SSL/TLS on normal connections''' - C)<br />
# Checks '''Disallow Plain Unencrypted FTP''' - D)<br />
# Default Listen for SSL/TLS –only connections on port '''990''' - E)<br />
# Click '''Generate new certificate''' - F)<br />
'''''Note'':'''<br />
* No need to fill in Private key or Certificate files - Automatically added after next section.<br />
* No need to fill in Key password box - not required.<br />
<br />
'''''[[#top | Top]]'''''<br />
|<br />
[[Image:Uc5_filezilla_4.gif]]<br />
|-<br />
|valign="top"|<br />
<br />
==== Fill in certificate details ====<br />
Clicking Generate new certificate opens the certificate form fill in as follows: <br />
<ol start="10"><br />
<li> '''Seclect Key size''' 4096bit - G) - may need to reduce this to 1024</li><br />
<li> Insert 2-Digit '''country code''' - H)</li><br />
<li> Fill in some '''real or dummy information''' a) to f)</li><br />
<li> '''Fill in Common name''' Use '''localhost''' or your real domain name - I)</li><br />
<li> Click browse button - J)<br><br />
Navigate to folder '''C:\UniServer\filezilla_server'''<br>This is where the certificate will be saved.<br><br><br />
'''''Note 1'':''' Your virtual drive letter may be different hence use that.<br>'''''Note 2'':''' If you are not using portable mode choose any folder you like.<br>However its a good idea to use folder<br>*\filezilla_server\filezilla_server_portable<br><br> <br />
</li><br />
<li> Click '''Generate certificate''' this will take a while. - K) </li><br />
<li> When complete click '''OK''' - L)<br />
</ol><br />
<br />
'''''[[#top | Top]]'''''<br />
|<br />
[[Image:Uc5_filezilla_5.gif]]<br />
|-<br />
|valign="top"|<br />
<br />
==== Enable user to use SSL ====<br />
<ol start="17"><br />
<li> From FileZilla admin select '''Edit > Users'''</li><br />
<li> Select page '''General''' - left menu</li><br />
<li> '''Select a user account''' - M)</li><br />
<li> '''Check Bypass''' - N)</li><br />
<li> '''Check Force SSL''' for user login - O)</li><br />
<li> Click '''OK''' - P)</li><br />
<li> '''Restart server'''</li><br />
</ol><br />
<br />
That completes the FileZille set-up.<br />
<br />
'''''Note'':'''<br />
<br />
Although we are using a single user account the above can be applied to other users.<br />
<br />
You can have a mix of users some using encryption while other do not the choice is yours. <br />
<br />
'''''[[#top | Top]]'''''<br />
|<br />
[[Image:Uc_filezilla_6.gif]]<br />
|}<br />
<br />
== Client - FireFTP ==<br />
{|<br />
|-<br />
|valign="top" width="100%"|<br />
==== FireFox and FireFTP ====<br />
I am assuming your are using FireFox and FireFTP these two are a great combination.<br />
<br />
You can use your preferred client the set-up will be similar. Check your clients manual for instructions. <br />
<br />
<br />
'''''Start FireFTP'':'''<br />
* Start FireFTP plugin '''Tools > FireFTP'''<br />
<br />
===== Main Tab =====<br />
# Select '''Main''' tab<br />
# '''Enter a host''' either use IP address 127.0.0.1 or host name localhost - R)<br />
# '''Enter an Account name''' Can be anything you like. - Q)<br />
# '''Enter login name''' e.g '''''fred''''' (ftp user name) - S)<br />
# '''Enter password''' for fred '''''fred123''''' (ftp user account password) - T) <br />
<br />
'''''[[#top | Top]]'''''<br />
|<br />
[[Image:Uc_filezilla_7.gif]]<br />
|-<br />
|valign="top" width="100%"|<br />
===== Connection Tab =====<br />
<ol start="6"><br />
<li> '''Click on Connection''' tab - U)</li><br />
<li> From the drop down menu '''select Implicit SSL''' (Good) - V)</li><br />
<li> Check the port number '''990''' is set - W)</li><br />
<li> Finally click '''OK''' - X)</li> <br />
</ol><br />
'''''Note'':''' You may need to check the IPv6 box for 4096bi!<br />
<br />
===== Local test =====<br />
From FireFTP click the '''Connect button''' enter name and password.<br />
<br />
Your browser will have a whinge, create a [[5.0-Nano: Enable SSL#Browser issues and Problems| certificate exception]].<br />
<br />
FTP folder will display.<br />
<br />
===== Local network test =====<br />
On another PC connected to your network repeat the above steps 1-9.<br />
<br />
'''Note:''' At step 1 enter your PC’s IP address. (See Basic Configuration 1 page how to [[FileZilla Server3: Basic Configuration 1#Local network access | obtain IP address]])<br />
<br />
That confirms you can access the FTP server across your network.<br />
|<br />
[[Image:Uc_filezilla_8.gif]]<br />
|}<br />
'''''[[#top | Top]]'''''<br />
<br />
== Client - FieZilla ==<br />
For completeness I have included this section it shows how to install portable FileZilla client and how to use it for testing the above.<br />
<br />
'''''[[#top | Top]]'''''<br />
=== Install ===<br />
# Create a new folder C:\'''FileZilla_client''' (can be any name)<br />
# Download the latest client '''FileZillaPortable_3.3.0.1.paf.exe''' from [http://portableapps.com/ PortableAppas]<br />
# Save to the above folder<br />
# Double click on '''FileZillaPortable_3.3.0.1.paf.exe''' to extract<br />
# Select language '''English''' click '''OK'''<br />
# Click '''Next'''<br />
# Choose Components '''defaults are OK''' click '''Next'''<br />
# Click '''Browse''' navigate to folder C:\'''FileZilla_client'''<br />
# Click '''Install'''<br />
# Click '''Finish'''<br />
<br />
'''''[[#top | Top]]'''''<br />
<br />
=== Run Client ===<br />
# Navigate to folder C:\FileZilla_client\'''FileZillaPortable'''<br />
# To run double click on file '''FileZillaPortable.exe'''<br />
<br />
'''''[[#top | Top]]'''''<br />
=== Local test ===<br />
Using quick connect makes testing extremely easy fill in the top row as follows:<br />
<br />
{|cellspacing="10"<br />
|-valign="top"<br />
|<br />
* A) Enter Host '''ftps:/localhost'''<br />
* B) Enter Username '''fred'''<br />
* C) Enter Password '''fred123'''<br />
* D) Enter port '''990'''<br />
* F) Click Quickconnect<br />
* A pop-up is displayed '''Unknown certificate''' click OK<br /> Creates an exception.<br />
<br />
You can now view and navigate folders assigned to user '''fred''' <br />
<br />
|<br />
[[Image:UC5_Zilla_client.gif]]<br />
|}<br />
<br />
'''''[[#top | Top]]'''''<br />
<br />
== Summary ==<br />
The above provides a secure link to your FTP server. If you are running a wireless network, data can be intercepted by sniffing the radio signals.<br />
<br />
Should your basic wireless security be compromised the FTP encryption will provide another hurdle making it more difficult for that data to be accessed.<br />
<br />
You do need the above security when FTPing data across the Internet. Before proceeding to the [[FileZilla Server3: Implicit SSL part 2 | final part]] make sure you can securely FTP locally.<br />
<br />
'''''[[#top | Top]]'''''<br />
<br />
----<br />
<br />
[[Category: Uniform Server 5.0-Nano]]<br />
[[Category: Setup]]<br />
[[Category: How To]]<br />
[[Category: Plugins]]</div>Ric