Article delegate-en/3654 of [1-5169] on the server localhost:119
  upper oldest olders older1 this newer1 newers latest
search
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
[Reference:<_A3653@delegate-en.ML_>]
Newsgroups: mail-lists.delegate-en

[DeleGate-En] Re: FTPS using client certificate
13 Mar 2007 19:37:52 GMT =?iso-8859-1?Q?H=E5kansson_Fredrik_=28a=29?= <piihabdyi-6cfuxbsrro3r.ml@ml.delegate.org>


Again thank you!

This is in the logfile:

[root@mailgot3 root]# tail /var/spool/delegate-nobody/log/errors.log
03/13 20:22:06 [18580]-P21 builtin-SSLway: ssl_acc() failed
03/13 20:22:07 [18582]-P21 builtin-SSLway: ssl_acc() failed
03/13 20:22:32 [18638]-P21 builtin-SSLway: ssl_acc() failed
03/13 20:22:33 [18640]-P21 builtin-SSLway: ssl_acc() failed
03/13 20:24:43 [18643]-P21 builtin-SSLway: ssl_acc() failed
03/13 20:24:45 [18645]-P21 builtin-SSLway: ssl_acc() failed
03/13 20:28:41 [19450]-P21 builtin-SSLway: ssl_acc() failed
03/13 20:28:43 [19452]-P21 builtin-SSLway: ssl_acc() failed
03/13 20:29:39 [19454]-P21 builtin-SSLway: ssl_acc() failed
03/13 20:29:40 [19456]-P21 builtin-SSLway: ssl_acc() failed



This is my command line:
./linux-dg  PERMIT="*:*:*" -P21 SERVER=ftp STLS="fcl" STLS="fsv,sslway -pass:xxxxxx -cert mycert.pem -CAcert ca.pem" ADMIN="f@volvo..se" -vvv DYLIB='libssl.so.0.9.6b' 

Best regards,
Fredrik Håkansson

-----Original Message-----
From: Yutaka Sato [mailto:feedback@delegate.org] 
Sent: den 13 mars 2007 20:14
To: feedback@delegate.org
Cc: Håkansson Fredrik (a); feedback@delegate.org
Subject: Re: [DeleGate-En:3658] FTPS using client certificate

Hi,

In message <_A3652@delegate-en.ML_> on 03/14/07(04:01:06)
you =?iso-8859-1?Q?H=E5kansson_Fredrik_=28a=29?= <fredrik.a.hakansson@volvo.com> wrote:
 |I converted my cert to the pem format and now the Delegate proxy loads with no errors.
 |
 |I have problem to get my Delegate proxy to provide the client certificate to the destination FTPS server. 
 |
 |If i load the client certificate on the Delegate proxy then the proxy disconnects my client and does not even try to connect to the destination FTPS server.
 |
 |If i don't load the client certificate on the Delegate proxy i will reach the destination FTPS server but when i send along the username and password the remote FTPS server disconnects me.
...
 | |./linux-dg  PERMIT="*:*:*" -P21 SERVER=ftp STLS="fsv,fcl,sslway -cert mycert.pfx -pass xxxxxx -CAfile ca.cer " ....

What error messages do you see in your LOGFILE of DeleGate?
Maybe you need to divide the STLS parameter into two STLS, one for
the server with additional options and one for clients, as follows
for example:

 STLS="fsv,sslway -cert mycert.pem -pass xxxxxx -CAfile ca.pem"
 STLS="fcl"

Cheers,
Yutaka
--
  9 9   Yutaka Sato <y.sato@delegate.org> http://delegate.org/y.sato/
 ( ~ )  National Institute of Advanced Industrial Science and Technology
_<   >_ 1-1-4 Umezono, Tsukuba, Ibaraki, 305-8568 Japan
Do the more with the less -- B. Fuller

  admin search upper oldest olders older1 this newer1 newers latest
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
@_@V