Article delegate-en/3548 of [1-5169] on the server localhost:119
  upper oldest olders older1 this newer1 newers latest
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
Newsgroups: mail-lists.delegate-en

[DeleGate-En] Re: delegate security flaw [Virus checked]
18 Oct 2006 12:05:11 GMT (Yutaka Sato)
The DeleGate Project


In message <_A3547@delegate-en.ML_> on 10/18/06(20:46:54) I wrote:
 |Maybe you are using a version of DeleGate older than DeleGate/9.2.5-pre7.
 |As written in <URL:> after DeleGate/9.0
 |I'm shifting to STLS=fcl,fsv instead obsoleted FCL,FSV=sslway in the recent
 |versions.  In fact, FCL,FSV=sslway for MASTER is disabled in 9.2.5-pre7.

I found that FCL,FSV=sslway with MASTER is not disabled in the latest
vesion.  It'll be disabled in 9.2.5.

 |With STLS=fcl, the whole communication between DeleGates is encrypted with
 |SSL, so if the SSL-layer is not established, no father action will be taken. 
 |Chaining DeleGates with MASTER and STLS can be done as follows.
 |  a% delegated -Pa:8888 STLS=fcl
 |  b% delegated -Pb:8023 STLS=fsv MASTER=a:8888 SERVER=telnet
 |You can use authentication by client-side certificate as follows:
 |  a% delegated -Pa:8888 STLS="fcl,sslway -Vrfy"
 |  b% delegated -Pb:8023 STLS="fsv,sslway -cert file" MASTER=a:8888 SERVER=telnet
 |Now the latest pre-release version of DeleGate has become 9.2.5-pre19 which
 |is almost ready to be released as an official version DeleGate/9.2.5
 |to be released tomorrow <URL:>
 |So you are strongly recommended to use the latest version of DeleGate with

  9 9   Yutaka Sato <>
 ( ~ )  National Institute of Advanced Industrial Science and Technology
_<   >_ 1-1-4 Umezono, Tsukuba, Ibaraki, 305-8568 Japan
Do the more with the less -- B. Fuller

  admin search upper oldest olders older1 this newer1 newers latest
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]