Article delegate-en/1931 of [1-5169] on the server localhost:119
  upper oldest olders older1 this newer1 newers latest
search
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]

Newsgroups: mail-lists.delegate-en

[DeleGate-En] sslway and root cert
14 Oct 2002 12:33:51 GMT "Stephan Kraemer" <prmdqbdyi-5ilfsuldr5fr.ml@ml.delegate.org>




hello

i have a little problem :))

is it possible that the sslway  manage a private certifikate like this
configuration , see below
1. here is the problem . that certifikate isnt alone it must use 2 root
certifikate too .
microsoft knows that and present that to the webserver .. but the sslway dont do
that why .. or how is the syntax to tell the sslway that they< must present not
only the client certifikate .. the goal is that the user connects with a http
session and the sslway make a https conection to the destination  ==> that works
fine at other  destinations .. but it dont work here the answer ist  " NO
PERMISSION" i think that the problem is  the proxy must use 3 certifikates for
the connection.. and i dont know to tell him .. how to use it ..

can anyone help me :))

10/14 14:11:52.40 [1860] 0+0: PORT> -P8083
10/14 14:11:52.43 [1860] 0+0: --INITIALIZATION START: 7.9.4 on WindowsNT--
10/14 14:11:52.46 [1860] 0+0: connectTO: assume in non-blocking mode
10/14 14:11:52.46 [1860] 0+0: {R} Found local NS (18.4.108.14:53)
10/14 14:12:02.98 [1860] 0+0: server_open(delegate,:8083,listen=20)
10/14 14:12:02.98 [1860] 0+0: server_open(delegate,:8083) BOUND
10/14 14:12:02.98 [1860] 0+0: DGROOT=e:\wps^M
10/14 14:12:02.98 [1860] 0+0: <DeleGate/7.9.4 by ysato@delegate.org> [1860]
-P8083 READY^M
<DeleGate/7.9.4 by ysato@delegate.org> [1860] -P8083 READY
DGROOT=e:\wps
ADMIN=s.kraemer
AIST Research Product No. 2000-ETL-198715-01
Copyright (c) 1994-2000 Yutaka Sato and ETL,AIST,MITI
Copyright (c) 2001-2002 National Institute of Advanced Industrial Science and
Technology (AIST)
10/14 14:12:02.98 [1860] 0+0: PORT= 8083/10 (31,147)
10/14 14:12:02.98 [1860] 0+0: OWNER=nobody => OWNER=?/?(?/?)
10/14 14:12:02.98 [1860] 0+0: HOSTLIST resized [0 -> 16]
10/14 14:12:02.98 [1860] 0+0: REMITTABLE = http,https/{443,563},gopher,ftp,wais
10/14 14:12:02.98 [1860] 0+0: ADMIN=s.kraemer protocol=http(specialist)
10/14 14:12:02.98 [1860] 0+0: MOUNT[0]=[0] /-* =
10/14 14:12:02.98 [1860] 0+0: MOUNT[1]=[1] /=* =
10/14 14:12:02.98 [1860] 0+0: MOUNT[2]=[2] /* https://wpdyn.wps.de/*
10/14 14:12:03.00 [1860] 0+0: Stay open PIDFILE for accept() lock[fd=12]
10/14 14:12:03.00 [1860] 0+0: env[21] LIBPATH=e:\wps
10/14 14:12:03.00 [1860] 0+0: arg[1] SERVER=http
10/14 14:12:03.01 [1860] 0+0: arg[4] LIBPATH=e:\wps
10/14 14:12:03.01 [1860] 0+0: arg[5] ADMIN=s.kraemer
10/14 14:12:03.01 [1860] 0+0: arg[6] CACHE=no
10/14 14:12:03.01 [1860] 0+0: arg[7] MOUNT=/* https://wpdyn.wps.de/*
10/14 14:12:03.01 [1860] 0+0: arg[8] DGROOT=e:\wps
10/14 14:12:03.01 [1860] 0+0: arg[9] FSV=sslway -cert wps.pem -pass
pass:password
10/14 14:12:03.01 [1860] 0+0: arg[10] SSLTUNNEL=180.121.140.2:8008
10/14 14:12:03.01 [1860] 0+0: arg[11] HOSTS=193.122.162.199
10/14 14:12:03.01 [1860] 0+0: DELEGATE_Modified[0]: 3daab25e
10/14 14:12:03.01 [1860] 0+0: --INITIALIZATION DONE--
(WIN) 12:18 [1860] spawn() = 516, children(alive=1,total=1)
10/14 14:12:18.78 [2272] 1+1: HOSTLIST resized [0 -> 16]
10/14 14:12:18.79 [2272] 1+1: REMITTABLE = http,https/{443,563},gopher,ftp,wais
10/14 14:12:18.81 [2272] 1+1: MOUNT[0]=[0] /-* =
10/14 14:12:18.81 [2272] 1+1: MOUNT[1]=[1] /=* =
10/14 14:12:18.81 [2272] 1+1: MOUNT[2]=[2] /* https://wpdyn.wps.de/*
10/14 14:12:18.81 [2272] 1+1: (0) accepted [17]
-@[193.25.207.168]s409nt1pr01.intern.sparkasse-bonn.
de:11416 (0.062s)(3)
10/14 14:12:18.81 [2272] 1+1: Proxy: host=s409nt1pr01.intern.spb.de; User-Agent:
Mozilla/
4.0 (compatible; MSIE 5.01; Windows NT 5.0); DIRECT
10/14 14:12:18.81 [2272] 1+1: HCKA:[0] Keep-Alive;
host=s409nt1pr01.intern.spb.de; (User-
Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0))
10/14 14:12:18.81 [2272] 1+1: *** / => https://wpdyn.wps.de/ ***
10/14 14:12:18.81 [2272] 1+1: REQUEST - GET / HTTP/1.1^M
10/14 14:12:18.81 [2272] 1+1: *** / => https://wpdyn.wps.de/ ***
10/14 14:12:18.81 [2272] 1+1: REQUEST +M https://wpdyn.wps.de/ HTTP/1.1^M
10/14 14:12:18.81 [2272] 1+1: PATH>
https://wpdyn.wps.de:443!s409nt1pr01.intern.spb.de
:8083!s409nt1pr01.intern.spb.de:11416!anonymous@s409nt1pr01.intern.spb.de
;1034597538
10/14 14:12:18.82 [2272] 1+1: REQUEST = [https://wpdyn.wps.de:443/] GET /
HTTP/1.1^M
10/14 14:12:18.82 [2272] 1+1: XHost: (0,0,1) wpdyn.wps.de <= 193.25.207.168:8083
10/14 14:12:18.92 [2272] 1+1: SSLtunnel connected [23] {18.121.40.2:8008 <-
193.25.207.168:11421} [0
.093s]
10/14 14:12:18.92 [2272] 1+1: SSL-TUNNEL<< wpdyn.wps.de:443
10/14 14:12:19.09 [2272] 1+1: SSL-TUNNEL>> HTTP/1.0 200 Connection established^M
10/14 14:12:19.12 [2272] 1+1: SSL-TUNNEL>> ^M
(WIN) 12:19 [2272] spawn() = 524, children(alive=1,total=1)
10/14 14:12:19.23 [2272] 1+1: HTTP => (wpdyn.wps.de:443) GET / HTTP/1..1^M
10/14 14:12:19.34 [1840] 1+0: HOSTLIST resized [0 -> 16]
10/14 14:12:19.39 [1840] 1+0: REMITTABLE = http,https/{443,563},gopher,ftp,wais
10/14 14:12:19.43 [1840] 1+0: MOUNT[0]=[0] /-* =
10/14 14:12:19.48 [1840] 1+0: MOUNT[1]=[1] /=* =
10/14 14:12:19.51 [1840] 1+0: MOUNT[2]=[2] /* https://wpdyn.wps.de/*
10/14 14:12:19.59 [1840] 1+0: [FSV] callFilter2: 26=1 27=1 sslway -cert wps.pem
-pass pass:password
10/14 14:12:19.62 [1840] 1+0: #### execFilter[FSV] sslway -cert wps.pem -pass
pass:password
10/14 14:12:19.68 [1840] 1+0: #### [sslway](5) sslway -cert wps.pem -pass
pass:password
(WIN) 12:19 [1840] spawn() = 496, children(alive=1,total=1)
(WIN) 12:19 [1840] wait(0) = ...
## SSLway[2292](localhost) server's cert. =
**subject<</C=DE/ST=NRW/L=Duesseldorf/O=LB Systems/O
U=Internet Engineering/OU=Terms of use at www.d-trust.de/rpa (c)
01/OU=Authenticated by D-TRUST GmbH
/OU=Member, VeriSign Trust Network/CN=wpdyn.wps.de>> **issuer<</O=VeriSign Trust
Network/OU=
VeriSign, Inc./OU=VeriSign International Server CA - Class
3/OU=www.verisign.com/CPS Incorp.by Ref.
LIABILITY LTD.(c)97 VeriSign>>
10/14 14:12:22.82 [2272] 1+1: E-P: No permission:
s409nt1pr01.intern.spb.de:11416 => http
s://wpdyn.wps.de


_____________________________________________________________________

PROSERVICE - Gesellschaft für IT und Dienstleistungen mbH

Systeme

Friedensplatz 1-3
                                         53101 Bonn (Germany)


                                         Tel: 0228 / 606 - 52302, Fax: 0228 /
                                         606 - 752302
mailto:Stephan.Kraemer@ProService..de, http://www.ProService.de
Amtsgericht Siegburg - HR B 5959

Der Austausch von Nachrichten mit der Proservice GmbH via eMail dient
ausschliesslich Informationszwecken. Rechtsgeschaeftliche Erklaerungen duerfen
ueber dieses Medium nicht ausgetauscht werden. Verfaelschungen des
urspruenglichen Inhaltes dieser Nachricht bei der Datenuebertragung koennen
nicht ausgeschlossen werden.



  admin search upper oldest olders older1 this newer1 newers latest
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
@_@V