Add creation of certificate and DH parameters file.

2017-12-25 01:27:16 +01:00 · 2017-12-25 01:27:16 +01:00 · f0531d6fb7
commit f0531d6fb7
parent f25f6aa78d
1 changed files with 41 additions and 1 deletions
--- a/install_pure-ftpd.sh
+++ b/install_pure-ftpd.sh
@ -239,7 +239,7 @@ fi

 echononl "   Create initial passwd database (pureftpd.pdb)"
 if [[ ! -f /etc/pure-ftpd/pureftpd.pdb ]]; then
-   touch /etc/pure-ftpd/pureftpd.pdb
+   touch /etc/pure-ftpd/pureftpd.pdb > $tmp_err_msg 2>&1
   if [[ $? -eq 0 ]] ; then
      echo_ok
   else
@ -250,6 +250,46 @@ else
   echo_skipped
 fi

+subj="
+C=DE
+ST=Berlin
+localityName=Berlin
+O=O.OPEN
+organizationalUnitName=Network Services
+commonName=$(hostname -f)
+emailAddress=argus@oopen.de
+"
+
+subj="
+C=DE
+ST=Berlin
+localityName=Berlin
+O=O.OPEN
+organizationalUnitName=Network Services
+commonName=$(hostname -f)
+emailAddress=argus@oopen.de
+"
+echononl "   Create certificate 'pure-ftpd.pem'.."
+openssl req -batch -x509 -nodes -days 7304 -newkey rsa:2048 \
+   -subj "$(echo -n "$subj" | tr "\n" "/")" \
+   -keyout /etc/ssl/private/pure-ftpd.pem \
+   -out /etc/ssl/private/pure-ftpd.pem > $tmp_err_msg 2>&1
+if [[ $? -eq 0 ]] ; then
+   echo_ok
+else
+   echo_failed
+   error "$(cat $tmp_err_msg)"
+fi
+
+echononl "   DH parameters file 'pure-ftpd-dhparams.pem'"
+openssl dhparam -out /etc/ssl/private/pure-ftpd-dhparams.pem 2048 > $tmp_err_msg 2>&1
+if [[ $? -eq 0 ]] ; then
+   echo_ok
+else
+   echo_failed
+   error "$(cat $tmp_err_msg)"
+fi
+
 # - Configure syslogd matching the configuration od amavisd
 # -
 echononl "   Configure syslogd matching the ftp syslog facility"