Articles delegate-en/4034-4096 of [1-5169] on the server localhost:119
  upper oldest olders older1 this newer1 newers latest
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
range 4034 - 4096   digest:
Use the same outgoing IP address as the incoming IP address
  08/01-03:07 . 4034  Sorin Esanu <> [76]
  Not on this one I run delegate. But I have one with more than 300 ips, on a single real interface... Seems like this patch is working. I will test more and give some feedback. Thanks!
  08/01-09:26 . 4035 (Yutaka Sato) [28]
  Hi, Ah, you meant non-real interafces. I see. I uploaded 9.8.4-pre3 including the patch and a little fix to be applied with it. It is for stopping reusing keep-alive to the server between clients of
NNTP-Delegate will not cache in Linux
  08/03-05:04 . 4036  Jeff <> [119]
  Hi, I have been struggling for a week now with NNTP-Delegate. Everything works great and as expected except for caching. It just does not seem to work. I have tested under Fedora and a new version o
  08/03-08:22 . 4037 (Yutaka Sato) [49]
  Hi Jeff, Thank you for your information. I tested a caching NNTP proxy by DeleGate on Fedora and saw a cached article never reused. In my case I saw a error message in LOGFILE as "### malformed arti
  08/04-04:31 . 4038  Jeff <> [143]
  Hi again, Thanks for your response. Makes sense. Though I have not picked up that same error message in my logs but perhaps I am just not seeing it in amongst everything else. I have modified the co
  08/04-06:26 . 4039 (Yutaka Sato) [65]
  Hi, If you see "islocal = 1" after "newServer = nntp://server" in your LOGFILE, it is the reason why the cache is disabled. DeleGate suppresses caching of articles from a local newsserver (a server
filtering between http and raw sockets communication on single port
  08/04-08:13 . 4040  jan de vries <> [35]
  Hello, I have be trying and searching for hours but still no succes. I want to be able to filter the incomming traffic on my server. All http traffic has to be forwarded to webserver on port A and a
customization builtin messages and icons.
  08/04-11:32 . 4041  "David Wang" <> [53]
  Hi Yutaka, Did you mean we have to install at least 9.8.4-pre2 or above to have the MOUNT /-/builtin working with https? Kind Regards, David ---Original Message--- From: Yutaka Sato [mailto:feedback
NNTP-Delegate will not cache in Linux
  08/05-04:36 . 4042  Jeff <> [843]
  Hi Yutaka, Ok I have tried what you said I should try. Testing using the "simple method" does indeed write the article to the cache on the drive. However, testing with a typical NNTP client seems to
customization builtin messages and icons.
  08/05-11:32 . 4043  "David Wang" <> [54]
  Hi Yutaka, Also regarding to upgrading, does it only need to replace the older executable delegated file with new one, which is compiled from source code? Is there any other files need to be updated
NNTP-Delegate will not cache in Linux
  08/05-12:07 . 4044 (Yutaka Sato) [113]
  Hi, What the "typical NNTP client" is? In your log output, I saw why DeleGate does not cache with the client. It is because your client issues "BODY" command instead of "ARTICLE". As long as I know,
  08/05-17:13 . 4045 (Yutaka Sato) [38]
  Nothing is bad with a extensive post. You seem specifying DGROOT not in the command-line of DeleGate but in a parameter file. DGROOT (and OWNER) is one of parameters which cannot be specified in a p
SSL with Socks
  08/05-17:15 . 4046  Andre <> [240]
  Hey. In the long run want to use a ssl connection to a delegate sock proxy. I'm currently testing the correct establishment of a connection to a delegate proxy with ssl support. The connection will
NNTP-Delegate will not cache in Linux
  08/05-17:47 . 4047  Jeff <> [135]
  Hi Yutaka, Thanks for correcting me. That makes sense now that you mention it. Maybe I should read the documentation thoroughly another time :-) I have tested after making the patch you suggested fo
filtering between http and raw sockets communication on single port
  08/05-18:38 . 4048  jan de vries <> [8]
  I forgot to mention that i tried the recent stable version 9.7.7 from the zip. I experimented some more but still no luck. Is it possible to prepend every message on the raw socket connection with a
NNTP-Delegate will not cache in Linux
  08/05-19:09 . 4049 (Yutaka Sato) [111]
  Hi, The modifications will be included in the next release (9.8.4-pre4). I see. Note that users except commercial licensee have no right to make their own modification to DeleGate. (and you are not
unusual application for delegated
  08/06-03:08 . 4050  Joe in MPLS <> [34]
  I have a proprietary credit card authorization application that runs on an old mini-mainframe type machine that has no network encryption capability. I'd like to encrypt transactions between the poi
  08/06-03:38 . 4051 (Yutaka Sato) [34]
  Hi, It can be configured as follows (for port number 2001 to 2050): delegated STLS=fcl TIMEOUT=io:0 -P2001-2050 SERVER=tcprelay://host:- Due to the size of the buffer for internal representation of
  08/06-04:39 . 4052  Joe in MPLS <> [60]
  Yutaka, Thanks for the reply. Do the "internal representations of ports" consume resources even if they ports aren't used? Unfortunately the server ports aren't assigned sequentially in contiguous r
  08/06-05:20 . 4053 (Yutaka Sato) [39]
  Hi, The "internal representation" is merely textually expanded representation of ports with its socket descriptor. For example -P2000-2003 can be represented internally as "-P2000/100,2001/101,2002/
customization builtin messages and icons.
  08/06-13:51 . 4054 (Yutaka Sato) [24]
  Hi, 9.8.4-pre3 released last week including the patch is recommended. None. Cheers, Yutaka 9 9 Yutaka Sato <> ( ~ ) National Institute of Advanced Indu
NNTP-Delegate will not cache in Linux
  08/07-18:50 . 4055  Jeff <> [317]
  Hi Yutaka, I have been testing the last patch you sent, it seems to work acceptably but I have noticed an interesting side effect. First off, let me explain briefly how I am testing. My setup has an
  08/07-19:34 . 4056 (Yutaka Sato) [59]
  Hi, I'm sure that the tentative patch was coded behave as you described :p It receives ARTICLE response from the server to a cache file, then BODY part is extracted and forwarded to the client. It'l
How to verify a server's certificate?
  08/09-02:53 . 4057  Monika Schilling <> [156]
  Hello, I succeeded in setting up DeleGate 9.7.7 as a gateway beetween a pop3 client and a pop3s server by using this configuration: -v ADMIN=... STLS=fsv -P127.0.0.1:50110 SERVER=pop REMITTABLE=pop3
  08/09-19:18 . 4058 (Yutaka Sato) [42]
  Hi, Why do you think that DeleGate did not verify it? Your log shows that the verification of the server's certificate is succeeded (ok=1) based on your CAfile at [/home/ms/delegate/lib/CA.pem], thu
  08/11-01:24 . 4059  Monika Schilling <> [87]
  Hi Yutaka, Why do you think that DeleGate did not verify it? Your log shows that the verification of the server's certificate is succeeded (ok=1) based on your CAfile at [/home/ms/delegate/lib/
  08/11-11:45 . 4060 (Yutaka Sato) [40]
  Hi Monika, I implemented sslway.c of DeleGate to be compatible with the behavior of "apps/s_client.c" of OpenSSL. So if you test it with "openssl s_client" rather than "openssl verify", you will see
  08/11-15:58 . 4061 (Yutaka Sato) [31]
  Hallo, I searched documents about "SSL_CTX_set_default_verify_paths()" but it seems not so well documented. The function seems to use two environment variables (defined in OpenSSL/crypto/cryptlib.h
  08/11-18:17 . 4062  Monika Schilling <> [25]
  Hi Yutaka, Yes, this works! So I have an immediate solution. What do you think about a new DeleGate option which allows to switch off this implicit action. This avoids the scattered configuration (D
  08/11-18:36 . 4063 (Yutaka Sato) [37]
  Hi, I did it tentatively for the testing :) But note that the SSL (TLS) configuration of DeleGate is moving from sslway options like -CApath to files under the CERTDIR (like ca-sv.pem) after DeleGat
  08/12-04:38 . 4064  Monika Schilling <> [23]
  Hi Yutaka, Thank you for the pointer. I checked DeleGate 9.8.3 with the new way of configuration via files under CERTDIR. Everything works as expected. There is no need for using the trick with the
  08/12-15:08 . 4065 (Yutaka Sato) [125]
  Hi, Is it true? I can't understand it because the simple code of sslway.c does load the default certificates anyway if the loading of given certificate is succeeded, regardless whether or not it is
  08/14-04:06 . 4066  Inside User <> [30]
  DeleGate sounds like the only opensource project that stands a chance of providing similar features regarding MITM proxying of HTTPS, similar to that available in commercial products such as BlueCoa
How to verify a server's certificate?
  08/14-19:04 . 4067  Monika Schilling <> [131]
  Yutaka, Yes! I just now checked it again. Calling DeleGate DGROOT=/home/ms/.DeleGate/9.8.3/ DGCONF=/home/ms/bin/ /usr/local/bin/delegated-9.8.3 DGROOT=$DGROOT
  08/16-22:48 . 4068 (Yutaka Sato) [257]
  Monika, Your log does not include the status of "/etc/ssl/certs" so I can't confirm it. For example, the failure could occur if /etc/ssl/certs is empty, or thawteCp.pem is lacking, or the default ce
  08/17-02:29 . 4069  Monika Schilling <> [25]
  Yakuta, I take this serious. So I entered turn 3 and unified the batch files of my test cases. Nothing (DGROOT, version of DG, ...) is hard coded anymore. These variables are now taken from a single
SSL Buffer_Underflow
  08/19-01:01 . 4070  =?ISO-8859-1?Q?Andr=E9_Egners?= <> [8]
  Hello. I get a BUFFER_UNDERFLOW as a SSLEngineResult while calling unwrap. This happens every time the connection is closed. I'm using Delegate as a HTTPS Proxy with STLS=-fcl. The BUFFER_UNDERFLOW
  08/19-01:27 . 4071 (Yutaka Sato) [19]
  Hi, Could you show me a little more about your usage and environment? How can I reproduce it? Cheers, Yutaka 9 9 Yutaka Sato <> ( ~ ) National Institut
  08/19-01:45 . 4072  =?ISO-8859-1?Q?Andr=E9_Egners?= <> [16]
  Hi. In our research group we are working on anonymity network and use an onion routing scheme which could be compared to TOR, therefore we chain SSL proxies. The error occurs while doing throughput
  08/19-02:52 . 4073 (Yutaka Sato) [102]
  Hi, I have no experience with Java but I saw the document saying: <URL:> It could be the result of s
  08/19-03:11 . 4074 (Yutaka Sato) [24]
  Andre, This document also says: It might be inappropriate but very usual and reasonable implementation (for faster and lighter shutdown of connection in a heavy loaded network). And what is clearly
  08/19-03:47 . 4075  =?ISO-8859-1?Q?Andr=E9_Egners?= <> [6]
  Hi Yutaka. Thanks for the informative input, it is much appreciated. Best regards, Andre
  08/19-03:53 . 4076 (Yutaka Sato) [29]
  Andre, Maybe the enclosed patch is the simplest modification to let DeleGate do the shutdown SSL in the appropriate way :) Cheers, Yutaka 9 9 Yutaka Sato <>
FileZilla TLS security patch does not work with FTPS and Delegate
  08/19-16:37 . 4077 [1025]
  Hello, We are using DeleGate as a ftp to ftps proxy. The setting used to work *very well* (and therefore a big thank you for the author of DeleGate). The problem is with Explicit and Implicit SSL/TL
  08/19-17:34 . 4078 (Yutaka Sato) [59]
  Hi, This seems the same problem I heard last night... If so, you might be able to solve it with the patch I postedn in: <URL:> And more detailed lo
Antwort: Re: [DeleGate-En] FileZilla TLS security patch does not work with F TPS and Delegate
  08/19-19:37 . 4079 [195]
  Hi Yutaka, The patch you provided in fact solves the problem. It works fine again. Thank you very much. Cheers, Markus (Yutaka Sato) wrote on 19.08.2008 10:34:37: an FileZilla
nntp proxy as non root
  08/19-22:27 . 4080  Andreas Moroder <> [46]
  Hello, I would like to start delegate as nntp proxy as nobody. I followed the instructions on but maybe I made something wrong in /usr/local i hav
  08/20-13:48 . 4081 (Yutaka Sato) [68]
  First of all, you need nothing to do for it because it is the default behaviour of DeleGate when it is invoked by the root user. For example, you can test it as this: # delegated -P119 SERVER=nntp D
nntp an virus filtering or attachment blocking
  08/20-20:05 . 4082  Andreas Moroder <> [10]
  Hello, we have delegaterunning as nntp proxy. Is it possible to pass scan the nntp traffic that passes delegate with a virus scanner ? If not, is it possible to configure delegate the way that attac
  08/21-19:43 . 4083 (Yutaka Sato) [30]
  Hi, You can use the FTOCL parameter to filter each article by your own filter program. For example, you can erase any part exept text/plain in a multipart message using DeleGate as a MIME filtering
VStr overflow in Xstrcpy and TIME_WAIT state
  08/22-05:25 . 4084  "Jean Aumont" <> [309]
  Hi Yutaka Sato, First, thanks a lot for developping this proxy. It is great. I have 2 questions regarding the "Delegated" proxy: Question 1: Is this normal to see "VStr overflow in Xstrcpy" in the E
  08/22-06:35 . 4085 (Yutaka Sato) [40]
  Hi, The name is "DeleGate" :) No, it's abnormal. It might be the result of a long string (longer than 256bytes) in your configuration parameters like CMAP, AUTHORIZER, or so which could not be copie
  08/22-06:57 . 4086  "Jean Aumont" <> [88]
  Hi, Thanks for replying so fast. Regarding the Question 1: Is this normal to see "VStr overflow in Xstrcpy" in the ERRORLOG file ? In my configuration file there is nothing longer than about 100 cha
  08/22-13:38 . 4087 (Yutaka Sato) [66]
  Hi, Even if your input parameter is short, it might be expanded internally by DeleGate, and the result is reported in the LOGFILE. For example, a password string for -list{user:pass} in AUTHORIZER i
  08/22-22:08 . 4088  "Jean Aumont" <> [93]
  Hi Yutaka, Thanks a lot for the info. I will try the patch. Jean Aumont ---Original Message--- From: Yutaka Sato [] Sent: Friday, August 22, 2008 12:38 AM To: feedback@de
tls ciphers
  08/23-05:53 . 4089 (Yutaka Sato) [31]
  Hi, You need to include the keyword in the Subject or the body of your message to be forwarded to the list. The keyword is the name of the software, "DeleGate" :) Also messages with too many exclama
SSL Buffer_Underflow
  08/23-14:15 . 4090 (Yutaka Sato) [22]
  I found this message rejected because of too short body. Cheers, Yutaka 9 9 Yutaka Sato <> ( ~ ) National Institute of Advanced Industrial Science and
SSL no shared cipher
  08/24-23:46 . 4091  Andre <> [41]
  Hi. While trying to influence the chosen cipher used for SSL connections, it was pointed out to me to use "STLS="fcl, sslway -cipher <list as in I tried a couple of options with the openssl s_server
FileZilla TLS security patch does not work with FTPS and Delegate
  08/25-03:11 . 4092 (Yutaka Sato) [29]
  Hi, I read the discussion in the FileZilla forum including standpoints like mine :) <URL:> I'm suspicious if the way of shutdown handl
SSL no shared cipher
  08/25-03:17 . 4093  Andre <> [18]
  Hi again. I tested this with some other ciphers, also deliberately forcing a specific cipher. When testing with the openssl s_server command, Diffie-Hellman parameters are generated. According to [1
  08/25-14:36 . 4094 (Yutaka Sato) [78]
  Hi, I noticed that I have not implemented Diffie-Hellman handling :-O The enclosed patch does it by loading DH parameters from a file "dhparam.pem" under the default certificate store of DeleGate (C
  08/25-18:51 . 4095  Andre <> [88]
  Hi. Thanks again for the quick response. The supplied patch works like a charm. Best regards, Andre Yutaka Sato schrieb:
Delegate-CLOSE_WAIT problem
  08/29-00:20 . 4096  "Jean Aumont" <> [277]
  Hi Yukata, I have a serious problem using the delegate HTTP proxy. After using it for a while, its stops accepting connections. To temporaly fix the problem, I added MAXIMA=listen:500 to my config.
  admin search upper oldest olders older1 this newer1 newers latest
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
Generated:02/21 02:47:00 (3 sec) Expires:02/21 08:46:57 @_@V