From d0f3b329bddbc95f4828c31a5d6f3d916f4dbc13 Mon Sep 17 00:00:00 2001
From: dynanode <67394436+dynanode@users.noreply.github.com>
Date: Wed, 24 Jun 2020 23:38:21 +0200
Subject: [PATCH] TLS support for vsftpd

TLS 1.2 support for vsftpd
---
 install/rhel/7/vsftpd/vsftpd.conf | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)

diff --git a/install/rhel/7/vsftpd/vsftpd.conf b/install/rhel/7/vsftpd/vsftpd.conf
index 6e11268df..ab5319412 100644
--- a/install/rhel/7/vsftpd/vsftpd.conf
+++ b/install/rhel/7/vsftpd/vsftpd.conf
@@ -22,3 +22,19 @@ pasv_enable=YES
 pasv_max_port=12100
 pasv_min_port=12000
 use_localtime=YES
+CODE: SELECT ALL
+
+#SSL
+ssl_enable=YES
+allow_anon_ssl=NO
+force_local_data_ssl=YES
+force_local_logins_ssl=YES
+ssl_tlsv1_1=NO
+ssl_tlsv1_2=YES
+ssl_tlsv1=NO
+ssl_sslv2=NO
+ssl_sslv3=NO
+require_ssl_reuse=YES
+ssl_ciphers=HIGH
+rsa_cert_file=/usr/local/vesta/ssl/certificate.crt
+rsa_private_key_file=/usr/local/vesta/ssl/certificate.key