Article delegate-en/18 of [1-5169] on the server localhost:119
  upper oldest olders older1 this newer1 newers latest
search
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
[Reference:<_A17@delegate-en.ML_>]
Newsgroups: mail-lists.delegate-en

[DeleGate-En] Re: sslway accept failed
08 Aug 1998 12:13:13 GMT ysato@etl.go.jp (Yutaka Sato 佐藤豊)


In message <_A17@delegate-en.ML_> on 08/08/98(16:25:04) I wrote:
 | |On the command line of the PROXY/HTTP host the following message appears
 | |if the https connection is done and I have
 | |entered my PASSPHRASE for sslway:
 | |
 | |    accept failed.
...
 |I saw someone in the delegate@etl.go.jp mailing list said that
 |the key-length should be 512 bits which is originally 1024 bits
 |by default.
...
 |http://wall.etl.go.jp/mail-lists/archive/delegate/6712

Following the article in above URL (from Mr. Ueno) I created my own
certification and key as follows (without editing ssleay.cnf):

ssleay req \
        -new \
        -newkey rsa:512 \
        -nodes \
        -days 365 \
        -x509 \
        -out server-cert.pem \
        -keyout server-key.pem

Then used it with DeleGate as follows:

delegated -P8080 -v \
         SERVER=https \
         FCL="sslway -ac" \
         MOUNT="/* http://etlfs/*" \
         REMITTABLE=http

From Netscape Navigator Gold 3.0.1, I can connect the server
without problem (after interactive acception of the certificate,
but without any interactive entry of pass phrase for SSLway).

The log of DeleGate + SSLway around acception is as follows:

08/08 21:11:11.25 [6379] 12+0: -- Fork(FCL): 6378 -> 6379
08/08 21:11:11.25 [6379] 12+0: #### execFilter[FCL] sslway -ac
## SSLway[6380](192.31.200.115) start
## SSLway[6380](192.31.200.115) accepted
## SSLway[6380](192.31.200.115) client's cert. = NONE

Cheers,
Yutaka
--
Yutaka Sato <ysato@etl.go.jp> http://www.etl.go.jp/~ysato/   @ @ 
Computer Science Division, Electrotechnical Laboratory      ( - )
1-1-4 Umezono, Tsukuba, Ibaraki, 305-8568 Japan            _<   >_

  admin search upper oldest olders older1 this newer1 newers latest
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
@_@V