Articles delegate-en/3515-3562 of [1-5169] on the server localhost:119
  upper oldest olders older1 this newer1 newers latest
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
range 3515 - 3562   digest:
Question on installation of delegate on windows
  10/02-10:36 . 3515  "Tet Cheng Chia" <> [35]
  Hi, I am trying to install Delegate on Windows 2003. I have the following questions: 1) Should I be able to see delegated.exe anywhere after installation? Currently this is missing. 2) How do I chec
Multihomed HTTP proxy and SRCIF
  10/04-02:13 . 3516  "Igor Lidin" <> [53]
  Hi, I'm trying to setup multi-IP HTTP proxy on a machine which has multiple network interfaces. My goal is to setup multiple http proxies on multihomed server to allow proxy clients to present diffe
ftp to ftp gateway +(optional TLS)
  10/04-19:38 . 3517  Steve Brown <> [19]
  Thanks for the obvious point I missed! In the above example, I think MOUNT="/* ftp://server/*" means for all directories connect to 'server' and cd to the original path? In the log file I can see De
Uploading problem with HTTP(S) POST
  10/05-00:36 . 3518  "Jae Hwang" <> [260]
  Hi, I have a problem in uploading a relatively large file throught http(s) post (multipart form data). I have tried to search the previous mail archives for a possible solution as well as to change
  10/05-04:17 . 3519 (Yutaka Sato) [35]
  Hi, Hmm... DeleGate seems not to coped with the 100 (Continue) status from the server during relaying of POST request body. I made a workaround about it and uploaded the modified version as 9.2.5-pr
DeleGate with SSL encryption for a MSSQL
  10/05-04:33 . 3520  "Jae Hwang" <> [79]
  Hi, Just curious if it is possible to estblish a SSL-encrypted connection between a MSSQL client and the DeleGate, and a normal connection between the DeleGate and a MSSQL server. I have tried: dele
ftp to ftp gateway +(optional TLS)
  10/05-07:04 . 3521 (Yutaka Sato) [48]
  It can be done like a usual FTP proxy with STLS=-fsv as follows: delegated -P21 SERVER=ftp STLS=-fsv Then user can select a target server with USER or CWD command. USER user@server or USER user PASS
DeleGate with SSL encryption for a MSSQL
  10/05-08:42 . 3522 (Yutaka Sato) [39]
  Hi, The problem is whether or not the client is talking in SSL. If the client is talking in SSL, the problem is what "[12]", 0x12, sent from the client means. It is not a SSLv3 packet, but it can be
Uploading problem with HTTP(S) POST
  10/05-08:58 . 3523  "Jae Hwang" <> [63]
  Hi, Yutaka, It works great!!! Thank you for your help... Regards, Jae --- Original Message --- From: "Yutaka Sato" <> To: <> Cc: <e115138@hotmail..> Sent: W
  10/05-09:05 . 3524 (Yutaka Sato) [39]
  Hi, Can I see the log around the POST corresponding to the following ? (to be sure wheter the fix is working as I expected) Cheers, Yutaka 9 9 Yutaka Sato <>
  10/05-11:28 . 3525  "Jae Hwang" <> [154]
  Hi, Yutaka, Here is the requested log. Thanks, Jae 0/04 22:19:48.44 [7008] 1+2/2/2: POST REQBODY 0 / 0 : ready = 2646582 0/04 22:19:48.44 [7008] 1+2/2/2: POST REQBODY 8192 / 0 : ready = 2646582 0/04
DeleGate with SSL encryption for a MSSQL
  10/05-12:50 . 3526  "Jae Hwang" <> [113]
  Hi, Yutaka, The suggested args (both STLS and FCL with -dv) have been tried, and the related logs are shown below. thanks, Jae (1) delegated.exe -P11433 SERVER="tcprelay://localhost:1433" STLS=fcl -
  10/05-17:14 . 3527 (Yutaka Sato) [40]
  Hi, Hmm... This packet seems not the one in SSL. Maybe the packet is the one in TDS for authentication in which the usage of SSL is negotiated. So it is necessary to interpret at least the authentic
Uploading problem with HTTP(S) POST
  10/05-17:23 . 3528 (Yutaka Sato) [30]
  Hi, Thank you. I confirmed that the modification is working as I expected. This "HTTP/1.1 100 Continue" from the server is what must have been interpreted by DeleGate and forwarded to the client. Ch
ftp to ftp gateway +(optional TLS)
  10/05-22:53 . 3529  Steve Brown <> [28]
  Hi Yutaka, Yes, thanks for that. I tried that approach originally and looked elsewhere when it didn't work. Sadly I didn't look in the right place during testing, and it was working all along... Is
  10/06-02:50 . 3530 (Yutaka Sato) [52]
  Hi, I'm not so sure about your requirement but a simple notification of the usage of SSL with the FTP server can be done in the response message as follows: 230-- @ @ --[SSL]-- 230 \( - )/ -- { conn
Multihomed HTTP proxy and SRCIF
  10/06-04:04 . 3531 (Yutaka Sato) [27]
  Hi, SRCIF seems not interpreted when it is used in INETD. Instead, you can use it in more usual way without INETD as follows: -P10.0.0.2:3129 SERVER=http SRCIF= Cheers, Yutaka 9 9 Yutaka Sat
  10/06-04:27 . 3532 (Yutaka Sato) [48]
  Hi, I found why SRCIF is disabled with INETD. Simply it's not initialzed. It can be fixed as the enclosed patch. It will be applied to the next release (9.2.5-pre12). Thank you for your notice. Chee
intercepting HTTP/HTTPS and its conversion using delegate
  10/06-13:40 . 3533  "Lito Kusnadi" <> [31]
  Hi, I'm new to delegate. I am faced with a problem as follow: I have an application server which transfer XML file to a remote server using the HTTP POST method. The application server I have cannot
  10/06-15:01 . 3534 (Yutaka Sato) [25]
  Hi, Mediating between a HTTP client and a HTTPS server can be done with a DeleGate (as a "reverse proxy") which accepts a connection in HTTP from a client then connects to a server in HTTPS as folow
  10/06-15:10 . 3535  "Lito Kusnadi" <> [40]
  Hi Yutaka, In your example, using port 8888, is it necessary to use port other than 80? Or you assumed port 80 was used when you created the example? Thks. Lito Kindly Regards, Lito Kusnadi
  10/06-15:15 . 3536 (Yutaka Sato) [14]
  You can use any port if you can use it. Cheers, Yutaka 9 9 Yutaka Sato <> ( ~ ) National Institute of Advanced Industrial Science and Technology _< >_
Multihomed HTTP proxy and SRCIF
  10/06-23:22 . 3537  "Igor Lidin" <> [22]
  Hi, release (9.2.5-pre12). Thank you for your notice. Thank you, it works now, but in the following configuration INETD=" - - - - - SERVER=http SRCIF=" INETD=" - -
  10/07-04:12 . 3538 (Yutaka Sato) [36]
  Hi, I did not intend INETD to be used for HTTP in which a DeleGate process is reused for multiple connections from clients to cope with heavily repeated connections. The reuse can be disabled with t
  10/07-12:26 . 3539 (Yutaka Sato) [62]
  Hi, I uploaded 9.2.5-pre13 in which the above MAXIMA is set by default when INETD is specified. By the way, using INETD for HTTP can make overhead which is not negligible in a practical usage. So it
HTTP to HTTPS conversion problem
  10/09-13:55 . 3540  "Lito Kusnadi" <> [155]
  Hi, I managed to compile the delegate sourcecode in Linux Centos 4.3. I used a config file to run delegate as follow: -P8000 SERVER=http -v MOUNT="/**" STLS=fsv:https HOS
  10/09-16:18 . 3541 (Yutaka Sato) [45]
  Hi, The reason of the failure is the failure of dynamic loading of SSL libraries. You seems not have the SSL libraries on an appropriate directory (typically /usr/lib or /lib). This shows that your
ftp to ftp gateway +(optional TLS)
  10/09-22:01 . 3542  Steve Brown <> [129]
  Hi Yutaka, I'm experiencing odd things when I use Delegate to act as a TLS FTP gateway like you kindly described. Essentially, a non-TLS capable client when connecting via Delegate to a TLS capable
  10/10-00:12 . 3543 (Yutaka Sato) [136]
  Hi, What is this "controlport-2" and "controlport-2" ? Seeing what the difference is between the case of the failure and the success will be helpful. Cheers, Yutaka 9 9 Yutaka Sato <y.sato@delegate.
HTTP to HTTPS conversion problem
  10/10-08:57 . 3544  "Lito Kusnadi" <> [69]
  Thanks Yutaka, I'll try to compile again. By the way, would delegate be possible to remember the initial connectivity? This is the illustration: traffic converted from HTTP to HTTPS) When RemoteServ
  10/10-09:05 . 3545 (Yutaka Sato) [27]
  You have /usr/lib/ ? If so and you compiled DeleGate without modification (without options like -static), any recompilation will not be useful to solve the problem. Cheers, Yutaka 9 9 Yutak
delegate security flaw [Virus checked]
  10/18-18:38 . 3546 [49]
  hello yutaka, i recently discovered a security flaw which is related to the delegate permission control allthough using a filter like FCL="sslway ... -Vrfy" , when running in master mode , clients w
  10/18-20:46 . 3547 (Yutaka Sato) [47]
  Hi, Maybe you are using a version of DeleGate older than DeleGate/9.2.5-pre7. As written in <URL:> after DeleGate/9.0 I'm shifting to STLS=fcl,fsv instead obsole
  10/18-21:05 . 3548 (Yutaka Sato) [36]
  Hi, I found that FCL,FSV=sslway with MASTER is not disabled in the latest vesion. It'll be disabled in 9.2.5. Cheers, Yutaka 9 9 Yutaka Sato <> ( ~ ) N
Antwort: Re: [DeleGate-En:3553] delegate security flaw [Virus checked]
  10/18-21:26 . 3549 [204]
  Hello Yutaka, even with stls this is not the case ! the permission is denied after an initial relay has been made to an arbitrary server. therefore the delegate master process still is vulnerable to
  10/18-21:46 . 3550 (Yutaka Sato) [19]
  Hi, If SSL is failed with STLS=fcl, MASTER DeleGate (with SERVER=delegate) cannot know any of client's request including the desitination server, so it cannot connect to anywhere. I think so. Cheers
Antwort: Re: [DeleGate-En:3556] Antwort: Re: [DeleGate-En:3553] delegate security flaw [Virus checked]
  10/18-22:02 . 3551 [132]
  Hi , but in fact it is !. can i provide you with some logs to investigate this, or you can setup a simple scenario on your own an see it actually happen . no offense, but for the time beeing i have
  10/18-22:10 . 3552 (Yutaka Sato) [21]
  Hi, Hmm... it is very starange. Are you using dynamically linked version of SSL libraries (which has become the standard of DeleGate/9) instead of the obsoleted sslway as the external command ? Anyw
delegate myauth encrypted user:pass
  10/19-22:00 . 3553 [28]
  hello yutaka , is it possible to have myauth=user:pass in the same manner as -Fauth dgauth ( aka encrypted data in a file ) because on a command line invokement the myauth is shown in clear text . g
  10/20-00:08 . 3554 (Yutaka Sato) [32]
  Hi, You can encrypt your configuration parameters including MYAUTH stored in a parameter file, like +="config.cdh", as described in <URL:> I
DeleGate/9.2.5 (BETA) -- signed executable, fixes for chained DeleGate, SSL, etc.
  10/20-07:30 . 3555 (Yutaka Sato) [147]
  Dear DeleGate users, I inform you of the new release of DeleGate available as follows: DeleGate/9.2.5 -- signed executable, fixes for chained DeleGate, SSL, etc. + Verification of signed executable
delegate security flaw [Virus checked]
  10/20-10:05 . 3556 (Yutaka Sato) [38]
  Hi, I still cannot figure out the case in which SERVER=delegate with STLS=fcl does accept and connect to the target server even when SSL with the client is failed, so your example and/or log showing
Antwort: Re: delegate security flaw [Virus checked]
  10/20-20:47 . 3557 [191]
  hello yutaka, the new version works like a charm. encrpytion and authentication works as expected. i cannot provide the logs anymore, because they are deleted automatically. anyways , i'll keep an e
Filter and scan https traffic
  10/23-21:09 . 3558  Andreas Moroder <> [21]
  Hello, I am new to DeleGate. Today we have the following configuration: same server) -> firewall -> world. Now I would like to filter https traffic and more important, to scan for viruses the https
  10/24-04:29 . 3559 (Yutaka Sato) [32]
  Hi, I think it should be possible with the feather of DeleGate named MITM + CFI. <URL:> The configuration of DeleGate for it will be like this: delegated -P8080
Using delegate to gateway imap to
  10/30-11:38 . 3560  Doug Scoular <> [47]
  Hi All, I've been trying to use delegated to allow me to access I want to proxy localhost port 993 using IMAP via SSL to Google mail port 995 using POP via SSL. I've tried the followi
  10/31-11:00 . 3561 (Yutaka Sato) [19]
  Hi, As far as I know, DeleGate does not support the gateway from IMAP to POP. Cheers, Yutaka 9 9 Yutaka Sato <> ( ~ ) National Institute of Advanced In
relative paths
  10/31-22:22 . 3562 [214]
  Hi, I am using Delegate 9_2_5 proxy with a website that makes use of relative paths, however these paths appear incorrectly under certain cirmustances. I think I might need to configure the HTMLCONV
  admin search upper oldest olders older1 this newer1 newers latest
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
Generated:01/19 12:14:15 (3 sec) Expires:01/19 18:14:12 @_@V