If you installed Pure-FTPD on your CentOS 7 machine and trying to install SSL certificate on it, chances are that you added your pem file to “/etc/ssl/private/”. I installed valid certificate in this directory and still getting untrusted warning for localhost certificate. Later, I found out that this path is wrong and self signed certificate was being used. Right path on CentOS 7 is “/etc/pki/pure-ftpd/”.
Here is how to do it right on Centos.
- Create pem certificate that contains your key, crt and intermediate all in one file – pure-ftpd.pem
- Move this certificate to /etc/pki/pure-ftpd/ as this is the right directory on CentOS.
- In your pure-ftpd.conf, set TLS to 2.
- Enable PassivePortRange from 30000 – 65000.
- Restart pure-ftpd.
It should work.