There may be some situations where you want to encrypt FTP traffic with SSL certificates rather than using SFTP with SSH. Using vsftpd with SSL encryption is quite easy, and here’s how it’s done:

First, you’ll need to make a new self-signed SSL certificate (if you don’t have a key and certificate available already):

Once you have the key and certificate made, you’ll need to concatenate them into a PEM file:

Now, simply adjust the vsftpd configuration file to enable SSL encryption:

Once that’s complete, restart vsftpd and you will be able to connect to your FTP server using SSL/TLS encryption.

Further Reading:

Manpage of vsftpd.conf