paspo/docker-ftps
1
0
Fork 0
Code Issues Pull Requests Actions Packages Releases Wiki Activity

updated docs

Browse Source
This commit is contained in:
Paolo Asperti 2019-05-18 11:33:49 +02:00
parent bbaa8496eb
commit ff107e15da
Signed by: paspo
GPG Key ID: 06D46905D19D5182
1 changed files with 8 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
README.md
View File

@ -47,21 +47,26 @@ services:
volumes:
- "/srv/ftps/auth:/auth"
- "/srv/ftps/data:/home"
- "/etc/letsencrypt/live/ftp.mydomain.com:/certs"
- "/etc/letsencrypt:/certs"
environment:
- MASQUERADE=ftp.mydomain.com
- TLS_CERT=/certs/live/ftp.mydomain.com/cert.pem
- TLS_KEY=/certs/live/ftp.mydomain.com/privkey.pem
- TLS_CHAIN=/certs/live/ftp.mydomain.com/chain.pem
```
## notes
Please note that you have to restart the container whenever the certificate is renewed.
Please note that you have to restart the container (or send sighup to proftpd) whenever the certificate is renewed.
We mount the complete letsencrypt directory because the in live/ftp.mydomain.com we have symlinks to the actual live certificates and in the container these will refer to non-existant files.
Also FTP active mode doesn't work until you configure networking as "host".
## users management
To change/set a password, do like this (replace "paolo" with the correct username):
```bash
docker exec -ti my-ftps ftpasswd --passwd --name=paolo --uid=1000 --home=/home/paolo --shell=/bin/false --file=/auth/passwd
docker exec -ti my-ftps ftpasswd --passwd --name=paolo --uid=1000 --home=/home/paolo --sha512 --shell=/bin/false --file=/auth/passwd
```
You also have to create and chown the user's home folder.