vsftpd, GnuTLS error -12 and Filezilla

I recently had an issue with a user not being able to log into their FTP account. I have vsftpd set up to use TLS encryption. When using Filezilla to connect to vsftpd with explicit TLS you may see something similar to the following output:

Status: Resolving address of www.example.com
Status: Connecting to 127.0.0.1:21…
Status: Connection established, waiting for welcome message…
Response: 220 WELCOME TO EXAMPLE.COM
Command: AUTH TLS
Response: 234 Proceed with negotiation.
Status: Initializing TLS…
Error: GnuTLS error -12: A TLS fatal alert has been received.
Error: Could not connect to server

The problem was that weaker ciphers have been removed from Filezilla 3.5.3 which were previously available in 3.5.2 – Users running the older version didn’t have any issues connecting. To fix this issue simply edit the /etc/vsftpd.conf file and add the following:

ssl_ciphers=HIGH

That fixed the login issues for the new user.

Feedback

  Comments: 5


  1. Worked for me since i upgradet my Ubuntu Server 10.04 to ubuntu server 12.04 🙁


  2. i mean it worked for me on ubuntu 10.04 and now it does not work any more 🙁


  3. It works, Thanks!


  4. You sir, are a champion!

  5. Nicklas Avén


    Thanks a lot, this saved my day 🙂

Your feedback