diff -Nur e-smith-proftpd-2.6.0.old/root/etc/e-smith/db/configuration/defaults/ftp/TLSEnable e-smith-proftpd-2.6.0/root/etc/e-smith/db/configuration/defaults/ftp/TLSEnable
--- e-smith-proftpd-2.6.0.old/root/etc/e-smith/db/configuration/defaults/ftp/TLSEnable	1969-12-31 19:00:00.000000000 -0500
+++ e-smith-proftpd-2.6.0/root/etc/e-smith/db/configuration/defaults/ftp/TLSEnable	2016-06-17 11:01:16.668000000 -0400
@@ -0,0 +1 @@
+on
diff -Nur e-smith-proftpd-2.6.0.old/root/etc/e-smith/db/configuration/defaults/ftp/TLSRequired e-smith-proftpd-2.6.0/root/etc/e-smith/db/configuration/defaults/ftp/TLSRequired
--- e-smith-proftpd-2.6.0.old/root/etc/e-smith/db/configuration/defaults/ftp/TLSRequired	1969-12-31 19:00:00.000000000 -0500
+++ e-smith-proftpd-2.6.0/root/etc/e-smith/db/configuration/defaults/ftp/TLSRequired	2016-06-17 11:01:16.668000000 -0400
@@ -0,0 +1 @@
+on
diff -Nur e-smith-proftpd-2.6.0.old/root/etc/e-smith/db/configuration/defaults/ftp/TLSVerifyClient e-smith-proftpd-2.6.0/root/etc/e-smith/db/configuration/defaults/ftp/TLSVerifyClient
--- e-smith-proftpd-2.6.0.old/root/etc/e-smith/db/configuration/defaults/ftp/TLSVerifyClient	1969-12-31 19:00:00.000000000 -0500
+++ e-smith-proftpd-2.6.0/root/etc/e-smith/db/configuration/defaults/ftp/TLSVerifyClient	2016-06-17 11:01:16.668000000 -0400
@@ -0,0 +1 @@
+off
diff -Nur e-smith-proftpd-2.6.0.old/root/etc/e-smith/templates/etc/proftpd.conf/06ModTLS e-smith-proftpd-2.6.0/root/etc/e-smith/templates/etc/proftpd.conf/06ModTLS
--- e-smith-proftpd-2.6.0.old/root/etc/e-smith/templates/etc/proftpd.conf/06ModTLS	1969-12-31 19:00:00.000000000 -0500
+++ e-smith-proftpd-2.6.0/root/etc/e-smith/templates/etc/proftpd.conf/06ModTLS	2016-06-17 10:56:56.000000000 -0400
@@ -0,0 +1,37 @@
+{
+    	#check if TLS is enabled
+        if (($ftp{TLSEnable} || 'on') eq 'on') {
+
+        #check if TLS is required: values "on", "off"
+        #if "on" normal ftp connections are dropped
+        my $tlsrequired = $ftp{'TLSRequired'} || "on";
+        my $tlsclient = $ftp{'TLSVerifyClient'} || "off";
+        #use the same crt and key of httpd
+        my $crt = $modSSL{'crt'} ||
+        "/home/e-smith/ssl.crt/${SystemName}.${DomainName}.crt";
+
+	my $key = $modSSL{'key'} ||
+        "/home/e-smith/ssl.key/${SystemName}.${DomainName}.key";
+        my $chain_file = $modSSL{CertificateChainFile} ||
+        "# no chain cert";
+
+       $chain_file = ( $chain_file eq "# no chain cert" )? $chain_file  : "TLSCertificateChainFile $chain_file";
+
+    	$OUT .= <<SSL_END;
+
+<IfModule mod_tls.c>
+TLSEngine                  on
+TLSLog                     /var/log/proftpd/tls.log
+TLSProtocol                TLSv1.1 TLSv1.2
+TLSOptions                 NoCertRequest AllowClientRenegotiations
+TLSRSACertificateFile      $crt
+TLSRSACertificateKeyFile   $key
+$chain_file
+TLSVerifyClient            $tlsclient
+TLSRequired                $tlsrequired
+</IfModule>
+SSL_END
+
+	}
+}
+