missing pure-certd binary

Asked by lee on 2021-04-15

i'm trying to look at configuring SNI for pure-ftpd on ubuntu 20.04
looking at the man pages, it relies on pure-certd for this, and this should be included in the pure-ftd-common package according to this:
Ubuntu Manpage: pure-certd - TLS certificate agent for Pure-FTPd.
https://manpages.ubuntu.com/manpages/focal/man8/pure-certd.8.html

now i have the required package installed:

apt list --installed | grep pure

pure-ftpd-common/focal,now 1.0.49-4 all [installed]
pure-ftpd-mysql/focal,now 1.0.49-4 amd64 [installed]

but i can't find any trace of pure-certd anywhere on my server

It looks like the .deb packages in Debian and Ubuntu do not include the pure-certd binary.

Question information

Language:
English Edit question
Status:
Answered
For:
Ubuntu pure-ftpd Edit question
Assignee:
No assignee Edit question
Last query:
Last reply:

https://manpages.ubuntu.com/manpages/focal/man8/pure-certd.8.html

It's in the pure-ftpd-common package, which you have installed

Manfred Hampl (m-hampl) said : #2

I suggest that you create a bug report

pure-ftpd was copied from Debian without Ubuntu-specific modification, and as far as I can see from Debian, the situation there is the same:
https://packages.debian.org/search?suite=sid&arch=any&mode=filename&searchon=contents&keywords=pure-certd

It probably makes sense to create a bug report in the Debian bug tracker and another one in the Ubuntu bug tracker with a link to the Debian bug.

Remark: from the upstream change log https://download.pureftpd.org/pub/pure-ftpd/doc/ChangeLog
* Version 1.0.48:
 - SNI support has been added. A new service, pure-certd, can run
external code written in any language in order to map SNI names to
TLS certificates.

So this seems to affect Ubuntu focal and later.

Manfred Hampl (m-hampl) said : #3

@actionparsnip: The binary file is missing in the deb file(s), just the man page is there.

Ahhh I see. Clearly a bug

Manfred Hampl (m-hampl) said : #5

Remark:
As far as I can see pure-certd is compiled from C-source. This let me assume that the binary differs by architecture and consequently cannot be packaged in pure-ftpd-common which is architecture-indepentent.

Can you help with this problem?

Provide an answer of your own, or ask lee for more information if necessary.

To post a message you must log in.