FTP over SSL (FTPS) provides a secure file transfer option using the FTP protocol in which all data sent or received can be protected by SSL (Secure Socket Layer) and TLS (Transport Layer Security) based encryption. For more information on the protocol, please see the IETF RFC document 4217.
The VShell server with FTPS is delivered as a separate download, installation, and executable module from the standard VShell with Secure Shell/SFTP support. Both are available from the VanDyke Software website. VShell with FTPS also supports SFTP and honors many existing VShell configuration options. These include access control settings, connection filters, deny host, virtual roots, triggers, logging, and the new VShell internal user database. There are several options that are specific to the FTPS service:
In order for the SSL negotiation to succeed, VShell FTPS must be configured to use a certificate. A certificate must be specified for each listen address configured. A certificate can be specified or created while editing or adding listen addresses.
Rather than creating a self-signed certificate, VShell with FTPS can also be configured to use a pre-existing certificate for SSL/TLS negotiation. The certificate must meet the following requirements:
The listen addresses can all use the same certificate or a unique certificate can be specified for each address.