updated docs

This commit is contained in:
Paolo Asperti 2019-05-18 11:33:49 +02:00
parent bbaa8496eb
commit ff107e15da
Signed by: paspo
GPG Key ID: 06D46905D19D5182
1 changed files with 8 additions and 3 deletions

View File

@ -47,21 +47,26 @@ services:
volumes:
- "/srv/ftps/auth:/auth"
- "/srv/ftps/data:/home"
- "/etc/letsencrypt/live/ftp.mydomain.com:/certs"
- "/etc/letsencrypt:/certs"
environment:
- MASQUERADE=ftp.mydomain.com
- TLS_CERT=/certs/live/ftp.mydomain.com/cert.pem
- TLS_KEY=/certs/live/ftp.mydomain.com/privkey.pem
- TLS_CHAIN=/certs/live/ftp.mydomain.com/chain.pem
```
## notes
Please note that you have to restart the container whenever the certificate is renewed.
Please note that you have to restart the container (or send sighup to proftpd) whenever the certificate is renewed.
We mount the complete letsencrypt directory because the in live/ftp.mydomain.com we have symlinks to the actual live certificates and in the container these will refer to non-existant files.
Also FTP active mode doesn't work until you configure networking as "host".
## users management
To change/set a password, do like this (replace "paolo" with the correct username):
```bash
docker exec -ti my-ftps ftpasswd --passwd --name=paolo --uid=1000 --home=/home/paolo --shell=/bin/false --file=/auth/passwd
docker exec -ti my-ftps ftpasswd --passwd --name=paolo --uid=1000 --home=/home/paolo --sha512 --shell=/bin/false --file=/auth/passwd
```
You also have to create and chown the user's home folder.