Proftpd 1.3.7c not working with openssl 3
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
proftpd-dfsg (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Jammy |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
[ Impact ]
On ubuntu 22.04, the current version of Proftpd 1.3.7c+dfsg-1build1 with the module sftp doesn't work with openssl 3.0.
[ Test Plan ]
Install proftpd with sftp module on ubuntu 22.04 and create a virtual account.
Installation details :
apt install proftpd-basic
echo "
<IfModule mod_sftp.c>
<VirtualHost X.X.X.X>
# Configure the server to listen on port
Port 2222
SFTPEngine on
SFTPLog /var/log/
TransferLog /var/log/
# Configure both the RSA and DSA host keys, using the same host key
# files that OpenSSH uses.
SFTPHostKey /etc/proftpd/
# Auth methods
# SFTP specific configuration
DefaultRoot ~
# Some ftp options
SFTPOptions IgnoreSFTPSetPerms IgnoreSFTPUploa
Umask 002 002
</VirtualHost>
</IfModule>" > /etc/proftpd/
echo "
# Use only AuthUserFiles when authenticating, and not the system's /etc/passwd
AuthOrder mod_auth_file.c
# Use virtual users file
AuthUserFile /etc/proftpd/
Uncomment in /etc/proftpd/
# Install proftpd-mod-crypto to use this module for SFTP support.
LoadModule mod_sftp.c
LoadModule mod_sftp_pam.c
ftpasswd --passwd --file=
cp /etc/ssh/
cp /etc/ssh/
systemctl restart proftpd
[ Where problems could occur ]
When you try to connect with sftp.
The result of this issue is : you can't connect with sftp.
[ Other Info ]
You can see two issues with the same problem :
https:/
https:/
The problem for sftp module is fixed in 1.3.7e version :
1.3.7e
-------
- Issue 1448 - Ensure that mod_sftp algorithms work properly with OpenSSL 3.x.
https:/
This is the commit for the fix :
https:/
Thanks for the help.
Changed in proftpd-dfsg (Ubuntu): | |
status: | Confirmed → Fix Released |
Changed in proftpd-dfsg (Ubuntu Jammy): | |
status: | New → Confirmed |
description: | updated |
description: | updated |
description: | updated |
description: | updated |
Status changed to 'Confirmed' because the bug affects multiple users.