From nobody Mon Jun 26 09:35:16 2023 X-Original-To: ports-bugs@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4QqN451cY1z4jYG5 for ; Mon, 26 Jun 2023 09:35:17 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4QqN445lWrz4cdB for ; Mon, 26 Jun 2023 09:35:16 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1687772116; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding; bh=Rwwx+v3l6qxIvIAzYPLRGW8DWVhmm1jsLXOHa3JzJsw=; b=jVcblqTqklmsUtIHDMbOctbrlW7HQz43XqPHI94E9WPZ1F2ySW5MCgsEFGZQRZ3d5MjPpv EYZlLyM2YZxOsqpKt4nkvUYi6ITCwzfiITlHShy0D1cOvPLQN5a5reS/L0fYYERA8V8nTK GZdHIUOC6E+SFwypJ8m5PJF6PIebIDXdu8rCkRHSRzeikZuEyDbfaJH3cvP3wxg08mlHa5 R9Vv1d2Dhl7vfE5GAd28hqQ8q/ksDHmoK6lHPasZnk5Nwom8YkE3sDE1KwL0zowZT80eJk bkOxQMXBsl3Jhd2K5eBvKOqjCXeWQeO75hflvPJk8qEZl6bshjsBPYPgB34Zsg== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1687772116; a=rsa-sha256; cv=none; b=wLA2kKpSDccmJL7jAGZso/MZcrW/43htGE1TfrYSgd1A0XbOfd88P9W6AfbQNyaRzH9RPV bK2/eBR6FWLo733JCNr2Xt2rq8yzDMzExwboR8a9q6IBwWpXjAcxwl7+2Un+4bF1xX/X3c wxSYFbwr9z5+oQMleI1yFwp9Ikdb/eIMBoXuB23THG2B9haFxOQaOi+GnMggqoZ9CpG5Tx sDhwbj65V8n96lb/YafCNNfJp08DdNTs8RLwMbylPJVae6dnZhJDzDzr4ZoYXhFm3WK15j oTXjVeKSv/RzBbCn+heYK3eKWi/rCJOhd54l6H+SwIn6DbS7oBiDi0wMarBMJg== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4QqN444mB0z14tZ for ; Mon, 26 Jun 2023 09:35:16 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 35Q9ZG9P080741 for ; Mon, 26 Jun 2023 09:35:16 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 35Q9ZGNj080740 for ports-bugs@FreeBSD.org; Mon, 26 Jun 2023 09:35:16 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: ports-bugs@FreeBSD.org Subject: [Bug 272219] ftp/pure-ftpd add support for certd Date: Mon, 26 Jun 2023 09:35:16 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: new X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Ports & Packages X-Bugzilla-Component: Individual Port(s) X-Bugzilla-Version: Latest X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: matt@mgc.me.uk X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: sunpoet@FreeBSD.org X-Bugzilla-Flags: maintainer-feedback? X-Bugzilla-Changed-Fields: bug_id short_desc product version rep_platform op_sys bug_status bug_severity priority component assigned_to reporter flagtypes.name attachments.created Message-ID: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Ports bug reports List-Archive: https://lists.freebsd.org/archives/freebsd-ports-bugs List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-ports-bugs@freebsd.org X-BeenThere: freebsd-ports-bugs@freebsd.org MIME-Version: 1.0 X-ThisMailContainsUnwantedMimeParts: N https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D272219 Bug ID: 272219 Summary: ftp/pure-ftpd add support for certd Product: Ports & Packages Version: Latest Hardware: Any OS: Any Status: New Severity: Affects Some People Priority: --- Component: Individual Port(s) Assignee: sunpoet@FreeBSD.org Reporter: matt@mgc.me.uk Assignee: sunpoet@FreeBSD.org Flags: maintainer-feedback?(sunpoet@FreeBSD.org) Created attachment 243005 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D243005&action= =3Dedit rc script diff pure-certd is included with ftp/pure-ftpd and allows selecting a certificate based on the TLS SNI name provided during connection. As with authd, ideally the default rc script should allow starting the certd program. This provides the ability to use ftp.{customer-domain} with the relevant certificate as long as a script is created to output the correct cert/key paths. A sample script has been provided in this bug report although this is down = to the ftp server administrator to create. Support is activated with the following rc.conf settings - pureftpd_certd_enable=3D"yes" pureftpd_certdscript=3D"/path/to/custom/certd.sh" --=20 You are receiving this mail because: You are the assignee for the bug.=