Article delegate-en/3998 of [1-5169] on the server localhost:119
  upper oldest olders older1 this newer1 newers latest
search
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]

Newsgroups: mail-lists.delegate-en

[DeleGate-En] FW: [DeleGate-En] Windows Integrated Authentication
10 Jun 2008 14:42:35 GMT "Nagel, Willy" <ptihqbdyi-jfjnzgllvonr.ml@ml.delegate.org>


Hi Yutaka,

This doesn't seem to resolve the issue. 
Maybe you have another clue?
Here's what appears in the logfile (beneath this logfile are results
when not using the HTTPCONF add-rhead value):

06/10 15:10:19.36 [3816] 0+0: ... testing resolver[SYS] with
'WWW.DeleGate.ORG'
06/10 15:10:19.37 [3816] 0+0: ... you can suppress this test by
RES_WAIT=0
06/10 15:10:19.37 [3816] 0+0: ... gethostname(delegateserver)
06/10 15:10:19.37 [3816] 0+0: configuring default RESOLV ...
06/10 15:10:19.37 [3816] 0+0: ... gethostname()='delegateserver'
06/10 15:10:19.37 [3816] 0+0: ... SYS: delegateserver -> 192.168.1.60
06/10 15:10:19.37 [3816] 0+0: ... DNS: 192.168.1.60 ->
communications_ip.domain
06/10 15:10:19.37 [3816] 0+0: ... DNS available
06/10 15:10:19.37 [3816] 0+0: ... NIS not available (no default domain)
06/10 15:10:19.37 [3816] 0+0: ... export RES_ORDER=CFD
06/10 15:10:19.37 [3816] 0+0: export RESOLV=cache,file,dns (set by
default)
SRCSIGN=9.7.7-fix1:20071114171500+0900:2e734f2b9afeeb83:Author@DeleGate..
ORG:InIqseLisMa5s/g8g4TxnCZqRxPujG6ho6PMayMdxITXCowDzJC6CqkGe2DJSCCpaaMZ
wzVIPinIp0Y/9UMecCDEtCNaMe6Jrx6ZvT8KwUdLhaj5OJxu9kyuaiT4em/iPlfQPmVrpvRU
yT26/4uYWkbp+6i+onxQ8zk9yb0jpAE=
BLDSIGN=9.7.7-fix1:20071114171724+0900:2e734f2b9afeeb83::-
06/10 15:10:19.39 [3816] 0+0: --INITIALIZATION START-08061015+0100:
9.7.7-fix1 on WindowsNT--
06/10 15:10:19.39 [3816] 0+0: BINSHELL=/bin/sh
06/10 15:10:19.39 [3816] 0+0: MAXIMA=delegated:64 for small mem=1201M
06/10 15:10:19.39 [3816] 0+0: scan STLS and FILTERS before beDaemon()...
06/10 15:10:19.39 [3816] 0+0: FILTER[sslway]: sslway -cert lib/sft.crt
-key lib/sft.key
06/10 15:10:19.39 [3816] 0+0: STLS -> CMAP="sslway -cert lib/sft.crt
-key lib/sft.key:FSV:starttls"
06/10 15:10:19.39 [3816] 0+0: STLS -> CMAP="sslway -cert lib/sft.crt
-key lib/sft.key:FCL:starttls"
06/10 15:10:19.39 [3816] 0+0: --- [dgzlib1] 0 dglibdgzlib1.dll
06/10 15:10:19.39 [3816] 0+0: --- [C:\DeleGate\dgzlib1.dll]
06/10 15:10:19.39 [3816] 0+0: --- [dgzlib1] 10000000
C:\DeleGate\dgzlib1.dll
06/10 15:10:19.39 [3816] 0+0: ---- [dgzlib1] loaded 15 syms,
unknown=0+0, already=0
06/10 15:10:19.39 [3816] 0+0: +++ loaded Zlib 1.2.3.f-DeleGate-v2
06/10 15:10:19.39 [3816] 0+0: #### gzip/gunzip = dynamically linked
06/10 15:10:19.39 [3816] 0+0: --- [ssl] 0 dglibssl.dll
06/10 15:10:19.40 [3816] 0+0: --- [ssl] 0 ssl.dll
06/10 15:10:19.40 [3816] 0+0: --- [ssl] 0 ssl
06/10 15:10:19.40 [3816] 0+0: ## cannot load ssl
06/10 15:10:19.40 [3816] 0+0: --- [libeay32] 0 dgliblibeay32.dll
06/10 15:10:19.40 [3816] 0+0: --- [/DeleGate//lib\libeay32.dll]
06/10 15:10:19.40 [3816] 0+0: --- [libeay32] 1310000
/DeleGate//lib\libeay32.dll
06/10 15:10:19.40 [3816] 0+0: --- [libeay32] optional:
SSL_CTX_use_certificate_chain_file
06/10 15:10:19.40 [3816] 0+0: --- [libeay32] optional:
SSL_CTX_set_session_id_context
06/10 15:10:19.40 [3816] 0+0: --- [libeay32] optional:
SSL_CTX_set_generate_session_id
06/10 15:10:19.40 [3816] 0+0: ---- [libeay32] loaded 95 syms,
unknown=47+3, already=0
06/10 15:10:19.40 [3816] 0+0: --- [ssleay32] 0 dglibssleay32.dll
06/10 15:10:19.40 [3816] 0+0: --- [/DeleGate//lib\ssleay32.dll]
06/10 15:10:19.40 [3816] 0+0: --- [ssleay32] 1440000
/DeleGate//lib\ssleay32.dll
06/10 15:10:19.40 [3816] 0+0: ---- [ssleay32] loaded 95 syms,
unknown=0+0, already=44
06/10 15:10:19.40 [3816] 0+0: ---- unknown = 0+0, already = 44 / 95
06/10 15:10:19.40 [3816] 0+0: +++ loaded OpenSSL 0.9.8g 19 Oct 2007
06/10 15:10:19.59 [3816] 0+0: ## SSLway ## 0.187000 connected/accepted
06/10 15:10:19.59 [3816] 0+0: ## SSLway initialized ctx #-99577434 0 0
(WIN) 10:19.607 [3816] #### send_file (3816,1)[1736,7] -> 3816[1748,0]
(0,Err=87)
(WIN) 10:19.607 [3816] #### file to be sent fd=1 -> 0 EE80000 00000000X
06/10 15:10:19.61 [3816] 0+0: #### CACHE DISABLED #### Cache directory
seems not exist: C:/Program Files/DeleGate/cache
06/10 15:10:19.61 [3816] 0+0: #### start a service...
06/10 15:10:19.61 [3816] 0+0:
server_open(delegate,192.168.1.62:443,listen=20)
06/10 15:10:19.61 [3816] 0+0: server_open: 192.168.1.62:443
06/10 15:10:19.61 [3816] 0+0: server_open(delegate,192.168.1.62:443)
BOUND
06/10 15:10:21.59 [2636] 0+0: ## RES_ORDER=CFD
06/10 15:10:21.61 [2636] 0+0: ... testing resolver[CFD] with
'WWW.DeleGate.ORG'
06/10 15:10:21.61 [2636] 0+0: ... you can suppress this test by
RES_WAIT=0
06/10 15:10:21.62 [2636] 0+0: ... gethostname(delegateserver)
SRCSIGN=9.7.7-fix1:20071114171500+0900:2e734f2b9afeeb83:Author@DeleGate..
ORG:InIqseLisMa5s/g8g4TxnCZqRxPujG6ho6PMayMdxITXCowDzJC6CqkGe2DJSCCpaaMZ
wzVIPinIp0Y/9UMecCDEtCNaMe6Jrx6ZvT8KwUdLhaj5OJxu9kyuaiT4em/iPlfQPmVrpvRU
yT26/4uYWkbp+6i+onxQ8zk9yb0jpAE=
BLDSIGN=9.7.7-fix1:20071114171724+0900:2e734f2b9afeeb83::-
06/10 15:10:21.64 [2636] 0+0: --INITIALIZATION START-08061015+0100:
9.7.7-fix1 on WindowsNT--
06/10 15:10:21.64 [2636] 0+0: EXECDIR=C:\DeleGate
06/10 15:10:21.64 [2636] 0+0: BINSHELL=/bin/sh
06/10 15:10:21.64 [2636] 0+0: MAXIMA=delegated:64 for small mem=1198M
06/10 15:10:21.64 [2636] 0+0: scan STLS and FILTERS before beDaemon()...
06/10 15:10:21.64 [2636] 0+0: FILTER[sslway]: sslway -cert lib/sft.crt
-key lib/sft.key
06/10 15:10:21.64 [2636] 0+0: STLS -> CMAP="sslway -cert lib/sft.crt
-key lib/sft.key:FSV:starttls"
06/10 15:10:21.64 [2636] 0+0: STLS -> CMAP="sslway -cert lib/sft.crt
-key lib/sft.key:FCL:starttls"
06/10 15:10:21.65 [2636] 0+0: --- [dgzlib1] 0 dglibdgzlib1.dll
06/10 15:10:21.65 [2636] 0+0: --- [C:\DeleGate\dgzlib1.dll]
06/10 15:10:21.65 [2636] 0+0: --- [dgzlib1] 10000000
C:\DeleGate\dgzlib1.dll
06/10 15:10:21.65 [2636] 0+0: ---- [dgzlib1] loaded 15 syms,
unknown=0+0, already=0
06/10 15:10:21.65 [2636] 0+0: +++ loaded Zlib 1.2.3.f-DeleGate-v2
06/10 15:10:21.65 [2636] 0+0: #### gzip/gunzip = dynamically linked
06/10 15:10:21.65 [2636] 0+0: --- [ssl] 0 dglibssl.dll
06/10 15:10:21.65 [2636] 0+0: --- [ssl] 0 ssl.dll
06/10 15:10:21.65 [2636] 0+0: --- [ssl] 0 ssl
06/10 15:10:21.65 [2636] 0+0: ## cannot load ssl
06/10 15:10:21.65 [2636] 0+0: --- [libeay32] 0 dgliblibeay32.dll
06/10 15:10:21.65 [2636] 0+0: --- [/DeleGate//lib\libeay32.dll]
06/10 15:10:21.65 [2636] 0+0: --- [libeay32] 1130000
/DeleGate//lib\libeay32.dll
06/10 15:10:21.65 [2636] 0+0: --- [libeay32] optional:
SSL_CTX_use_certificate_chain_file
06/10 15:10:21.65 [2636] 0+0: --- [libeay32] optional:
SSL_CTX_set_session_id_context
06/10 15:10:21.65 [2636] 0+0: --- [libeay32] optional:
SSL_CTX_set_generate_session_id
06/10 15:10:21.65 [2636] 0+0: ---- [libeay32] loaded 95 syms,
unknown=47+3, already=0
06/10 15:10:21.65 [2636] 0+0: --- [ssleay32] 0 dglibssleay32.dll
06/10 15:10:21.67 [2636] 0+0: --- [/DeleGate//lib\ssleay32.dll]
06/10 15:10:21.67 [2636] 0+0: --- [ssleay32] 1260000
/DeleGate//lib\ssleay32.dll
06/10 15:10:21.67 [2636] 0+0: ---- [ssleay32] loaded 95 syms,
unknown=0+0, already=44
06/10 15:10:21.67 [2636] 0+0: ---- unknown = 0+0, already = 44 / 95
06/10 15:10:21.67 [2636] 0+0: +++ loaded OpenSSL 0.9.8g 19 Oct 2007
06/10 15:10:21.86 [2636] 0+0: ## SSLway ## 0.187000 connected/accepted
06/10 15:10:21.86 [2636] 0+0: ## SSLway initialized ctx #-99577434 0 0
06/10 15:10:21.86 [2636] 0+0:
server_open(delegate,192.168.1.62:443,listen=20)
06/10 15:10:21.86 [2636] 0+0: server_open: 192.168.1.62:443
06/10 15:10:21.87 [2636] 0+0: server_open(delegate,192.168.1.62:443)
BOUND
06/10 15:10:21.87 [2636] 0+0: NOT-USED DGROOT=/DeleGate/
DGROOT=C:/Program Files/DeleGate^M
06/10 15:10:21.87 [2636] 0+0: <DeleGate/9.7.7-fix1> [2636]
-P192.168.1.62:443 READY^M
06/10 15:10:21.87 [2636] 0+0: PORT= 192.168.1.62:443/11 (0,134)
06/10 15:10:21.87 [2636] 0+0: OWNER=nobody => OWNER=?/?(?/?)
06/10 15:10:21.87 [2636] 0+0: FILTER[sslway]: sslway -cert lib/sft.crt
-key lib/sft.key
06/10 15:10:21.87 [2636] 0+0: STLS -> CMAP="sslway -cert lib/sft.crt
-key lib/sft.key:FSV:starttls"
06/10 15:10:21.87 [2636] 0+0: STLS -> CMAP="sslway -cert lib/sft.crt
-key lib/sft.key:FCL:starttls"
06/10 15:10:21.92 [2636] 0+0: REMITTABLE =
http,https/{80,443},gopher,ftp,wais
06/10 15:10:21.92 [2636] 0+0: {R} SOA got
[reverse.in-addr.arpa][dns.domain.ext][hostmaster.domain.ext] 2008060601
14400 3600 604800 86400
06/10 15:10:21.92 [2636] 0+0: ADMIN=admin@domain..
protocol=https(specialist)
06/10 15:10:21.92 [2636] 0+0: #### CACHE DISABLED #### Cache directory
seems not exist: C:/Program Files/DeleGate/cache
06/10 15:10:21.94 [2636] 0+0: WORKDIR=/DeleGate//work/192.168.1.62..443
06/10 15:10:21.94 [2636] 0+0: MOUNT[0]X[3] /-/builtin/icons/* = default
06/10 15:10:21.94 [2636] 0+0: MOUNT[1]X[4] /-/* =
forbidden,from=!.RELIABLE,default
06/10 15:10:21.94 [2636] 0+0: MOUNT[2]X[0] /-* = default
06/10 15:10:21.94 [2636] 0+0: MOUNT[3]X[1] /=* = default
06/10 15:10:21.94 [2636] 0+0: MOUNT[4]X[5] /favicon.ico
builtin:icons/ysato/default.ico
default,direction=fo,onerror=404,expires=15m
06/10 15:10:21.94 [2636] 0+0: MOUNT[5]X[2] /* https://192.168.4.24/*
via=192.168.1.60
06/10 15:10:21.94 [2636] 0+0: Stay open PIDFILE for accept() lock[fd=15]
06/10 15:10:21.94 [2636] 0+0:
StickyReport[16,17]127.0.0.1:4539><127.0.0.1:4540 8192/8192 8192/65536
06/10 15:10:21.94 [2636] 0+0: env[24]
LIBPATH=.;C:\WINDOWS\system32;C:/Program
Files/DeleGate/lib;C:\DeleGate;C:/Program Files/DeleGate/etc
06/10 15:10:21.94 [2636] 0+0: ext[0] ADMIN=admin@domain..
06/10 15:10:21.94 [2636] 0+0: ext[1] DGROOT=/DeleGate/
06/10 15:10:21.94 [2636] 0+0: ext[2] SERVER=https
06/10 15:10:21.94 [2636] 0+0: ext[3] DELAY=reject:0,unknown:0
06/10 15:10:21.94 [2636] 0+0: ext[4]
HTTPCONF=add-rhead:Proxy-support:Session-Based-Authentication
06/10 15:10:21.94 [2636] 0+0: ext[5] STLS=fsv,fcl,sslway -cert
lib/sft.crt -key lib/sft.key
06/10 15:10:21.94 [2636] 0+0: ext[6] MOUNT=/* https://192.168.4.24/*
via=192.168.1.60
06/10 15:10:21.94 [2636] 0+0: ext[7] REACHABLE=192.168.4.24:443
06/10 15:10:21.94 [2636] 0+0: ext[8] RELIABLE=*
06/10 15:10:21.94 [2636] 0+0: arg[1] LIBPATH=.;C:\DeleGate;C:/Program
Files/DeleGate/lib;delegate;C:/Program Files/DeleGate/etc
06/10 15:10:21.94 [2636] 0+0: arg[2] RESOLV=cache,file,dns
06/10 15:10:21.94 [2636] 0+0: arg[6] ADMIN=admin@domain..
06/10 15:10:21.94 [2636] 0+0: DELEGATE_Modified[1]: 484e7d3d 1213103421
06/10 15:10:21.94 [2636] 0+0: --INITIALIZATION DONE-08061015+0100:
9.7.7-fix1 on WindowsNT--
(WIN) 10:21.966 [2636] --socketpair()=0 OK err=10048 0.015/1 (4539 4540)
0/0
(WIN) 10:50.357 [2636] --socketpair()=0 OK err=10048 0.016/1 (4539 4540)
0/0
(WIN) 10:50.388 [2636] spawn() = 448 [2024], children(alive=1/1) 0.047s
06/10 15:10:50.39 [2636] 1+0: spawn() = 448 [2024], children(alive=1/1)
0.047s
06/10 15:10:50.39 [2024] 1+0: MAXIMA=delegated:64 for small mem=1193M
06/10 15:10:50.40 [2024] 1+0: Stay open PIDFILE for accept() lock[fd=22]
06/10 15:10:50.40 [2024] 1+1: FILTER[sslway]: sslway -cert lib/sft.crt
-key lib/sft.key
06/10 15:10:50.40 [2024] 1+1: STLS -> CMAP="sslway -cert lib/sft.crt
-key lib/sft.key:FSV:starttls"
06/10 15:10:50.40 [2024] 1+1: STLS -> CMAP="sslway -cert lib/sft.crt
-key lib/sft.key:FCL:starttls"
06/10 15:10:50.65 [2024] 1+1: ## SSLway ## 0.203000 connected/accepted
06/10 15:10:50.65 [2024] 1+1: ## SSLway initialized ctx #-99577434 0 0
06/10 15:10:50.67 [2024] 1+1: (0) accepted [36]
-@[192.168.1.62]delegateserver:4541 (0.282s)(1)
06/10 15:10:50.67 [2024] 1+1: PATH:
https://-:443!delegateserver:443!delegateserver:4541!anonymous@delegates
erver;1213103450
06/10 15:10:50.67 [2024] 1+1: # SSL record head[16  3  1  0 61] SSL3
8?/102
06/10 15:10:50.67 [2024] 1+1: gethostbyname(-) unknown[0.00s] 
06/10 15:10:50.67 [2024] 1+1: ## SSLway FCC loadSession 0.000000 (0 0) /
-1
06/10 15:10:50.67 [2024] 1+1: ## SSLway ## 0.000000 sescache[0] HIT=0
sR=0 cR=1
06/10 15:10:50.69 [2024] 1+1: ## STLS ## IMPLICIT SSL ON 36,36,-1,32
06/10 15:10:50.69 [2024] 1+1: OK: SSL/cl 0.28 0.00/6.00 0.00 0.01 = 0.30
06/10 15:10:50.69 [2024] 1+1: 0.015 CFI_SYNC ready=2 [57/W]
06/10 15:10:50.69 [2024] 1+1: 0.015 CFI_SYNC ready=1 [A]
06/10 15:10:50.69 [2024] 1+1: Proxy: host=delegateserver; User-Agent:
Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.2; .NET CLR 1.1.4322);
DIRECT
06/10 15:10:50.69 [2024] 1+1: HCKA:[0] Keep-Alive; host=delegateserver;
(User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.2; .NET CLR
1.1.4322))
06/10 15:10:50.70 [2024] 1+1: REQUEST - GET / HTTP/1.1^M
06/10 15:10:50.70 [2024] 1+1: *** / => https://192.168.4.24/ ***
06/10 15:10:50.70 [2024] 1+1: REQUEST +M https://192.168.4.24/
HTTP/1.1^M
06/10 15:10:50.72 [2024] 1+1: *** / => https://192.168.4.24/ ***
06/10 15:10:50.72 [2024] 1+1: PATH>
https://192.168.4.24:443!delegateserver:443!delegateserver:4541!anonymou
s@delegateserver;1213103450
06/10 15:10:50.72 [2024] 1+1: REQUEST = [https://192.168.4.24:443/] GET
/ HTTP/1.1^M
06/10 15:10:50.72 [2024] 1+1: XHost: (0,0,1) 192.168.4.24 <=
192.168.1.62
06/10 15:10:50.72 [2024] 1+1: connectTO: assume in non-blocking mode
06/10 15:10:50.73 [2024] 1+1: ConnectToServer connected [30]
{192.168.4.24:443 <- 192.168.1.60:4545} [0.016s]
(WIN) 10:50.748 [2024] --socketpair()=0 OK err=10048 0.016/1 (4543 4544)
1/1
06/10 15:10:50.75 [2024] 1+1: ## SSLway 1F4 loadSession 0.000000 (0 0) /
1
06/10 15:10:50.78 [2024] 1+1: ## SSLway ## 0.031000 sescache[1] HIT=0
sR=0 cR=0
06/10 15:10:50.78 [2024] 1+1: ## SSLway server's cert. =
**subject<<certificatedata>> **issuer<<certificatedata>>
06/10 15:10:50.80 [2024] 1+1: willSTLS_SV: ServerFlags=8330
06/10 15:10:50.80 [2024] 1+1: HTTP => (192.168.4.24:443) GET /
HTTP/1.1^M
06/10 15:10:50.80 [2024] 1+1: HTTP error request: GET / HTTP/1.1^M
06/10 15:10:50.80 [2024] 1+1: HTTP error status: 401 Unauthorized
06/10 15:10:50.81 [2024] 1+1: HTTP error header: Content-Length: 1656^M
06/10 15:10:50.81 [2024] 1+1: HTTP error header: Content-Type:
text/html^M
06/10 15:10:50.81 [2024] 1+1: HTTP error header: Server:
Microsoft-IIS/6.0^M
06/10 15:10:50.81 [2024] 1+1: HTTP error header: WWW-Authenticate:
Negotiate^M
06/10 15:10:50.81 [2024] 1+1: HTTP error header: WWW-Authenticate:
NTLM^M
06/10 15:10:50.81 [2024] 1+1: HTTP error header: X-Powered-By: ASP.NET^M
06/10 15:10:50.81 [2024] 1+1: HTTP error header: Date: Tue, 10 Jun 2008
13:13:00 GMT^M
06/10 15:10:50.81 [2024] 1+1: #HT11 SERVER ver[HTTP/1.1] conn[]
06/10 15:10:50.81 [2024] 1+1: #HT11 server KEEP-ALIVE
06/10 15:10:50.81 [2024] 1+1: HTTP error header: ^M
06/10 15:10:50.81 [2024] 1+1: HTTP/1.1 401 Content-{Type:text/html
Encoding:[/] Leng:1656} Server:Microsoft-IIS/6.0
06/10 15:10:50.81 [2024] 1+1: ####Gzip [0.000000] - 1656 => 930 [33=>41]
06/10 15:10:50.81 [2024] 1+1: putMIMEmsg: Content-Length: 1656 -> 930
(1224 - 294) [gzip]
06/10 15:10:50.81 [2024] 1+1: #CEcl put Content-Encoding:gzip
06/10 15:10:50.81 [2024] 1+1: HTTP transmitted:
216head+1656/1656body=>0txt+0bin->930/930, 10i/2o/0f/0.0 ---z-
06/10 15:10:50.81 [2024] 1+1: SOCKET recv(38)=0 error=0 [0.000] TCP
AF_INET :4544 << :4543 
06/10 15:10:50.81 [2024] 1+1: ## SSLway FCL S-C:1297/1 C-S:280/1
06/10 15:10:50.83 [2024] 1+1: #HT11 putServ(31/32/30) 192.168.4.24:443
06/10 15:10:50.83 [2024] 1+1: HCKA:[0] closed -- x:external filter
06/10 15:10:50.83 [2024] 1+1: disconnected [36]
-@[192.168.1.62]delegateserver:4541 (0.438s)(0)
06/10 15:10:50.84 [2024] 1+1: CFI-wait 1/1 1/2 as=1 xpid=-1,-1 0.00
06/10 15:10:50.84 [2024] 1+1: StickyServer done [broken] 1 req / 1+0/1
conn / 0 sec
06/10 15:10:50.84 [2024] 1+1: SOCKET recv(35)=0 error=0 [0.000] TCP
AF_INET :4543 << :4546 
06/10 15:10:50.84 [2024] 1+1: ## SSLway FSV S-C:1872/1 C-S:281/1
06/10 15:10:50.84 [2024] 1+1: clearServ: 192.168.4.24:443 [0][1F40660/0]
(WIN) 10:56.857 [2636] --socketpair()=0 OK err=10048 0.016/1 (4539 4540)
0/0
(WIN) 10:56.888 [2636] spawn() = 488 [3160], children(alive=2/2) 0.047s
06/10 15:10:56.89 [2636] 2+0: spawn() = 488 [3160], children(alive=2/2)
0.047s
(WIN) 10:56.888 [2636] wait3(N) = 448 [2024] 0, children(alive=1/2)
0.00s
06/10 15:10:56.89 [2636] 2+0: wait3(N) = 448 [2024] 0,
children(alive=1/2) 0.00s
06/10 15:10:56.90 [3160] 2+0: MAXIMA=delegated:64 for small mem=1193M
06/10 15:10:56.90 [3160] 2+0: Stay open PIDFILE for accept() lock[fd=22]
06/10 15:10:56.90 [3160] 2+1: FILTER[sslway]: sslway -cert lib/sft.crt
-key lib/sft.key
06/10 15:10:56.90 [3160] 2+1: STLS -> CMAP="sslway -cert lib/sft.crt
-key lib/sft.key:FSV:starttls"
06/10 15:10:56.90 [3160] 2+1: STLS -> CMAP="sslway -cert lib/sft.crt
-key lib/sft.key:FCL:starttls"
06/10 15:10:57.17 [3160] 2+1: ## SSLway ## 0.219000 sescache[0] HIT=0
sR=0 cR=2
06/10 15:10:57.17 [3160] 2+1: ## SSLway initialized ctx #-99577434 0 0
06/10 15:10:57.17 [3160] 2+1: (1) accepted [41]
-@[192.168.1.62]delegateserver:4547 (0.282s)(1)
06/10 15:10:57.17 [3160] 2+1: PATH:
https://-:443!delegateserver:443!delegateserver:4547!anonymous@delegates
erver;1213103457
06/10 15:10:57.17 [3160] 2+1: # SSL record head[16  3  1  0 61] SSL3
8?/102
06/10 15:10:57.17 [3160] 2+1: gethostbyname(-) unknown[0.00s] 
06/10 15:10:57.17 [3160] 2+1: ## SSLway D84 loadSession 0.000000 (0 1) /
2
06/10 15:10:57.19 [3160] 2+1: ## SSLway ## 0.015000 sescache[2] HIT=1
sR=0 cR=1
06/10 15:10:57.19 [3160] 2+1: ## STLS ## IMPLICIT SSL ON 41,41,-1,31
06/10 15:10:57.19 [3160] 2+1: OK: SSL/cl 0.28 0.00/6.00 0.00 0.01 = 0.30
06/10 15:10:57.19 [3160] 2+1: 0.015 CFI_SYNC ready=2 [57/W]
06/10 15:10:57.19 [3160] 2+1: 0.015 CFI_SYNC ready=1 [A]
06/10 15:10:57.19 [3160] 2+1: Proxy: host=delegateserver; User-Agent:
Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.2; .NET CLR 1.1.4322);
DIRECT
06/10 15:10:57.19 [3160] 2+1: HCKA:[0] Keep-Alive; host=delegateserver;
(User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.2; .NET CLR
1.1.4322))
06/10 15:10:57.20 [3160] 2+1: REQUEST - GET / HTTP/1.1^M
06/10 15:10:57.20 [3160] 2+1: *** / => https://192.168.4.24/ ***
06/10 15:10:57.20 [3160] 2+1: REQUEST +M https://192.168.4.24/
HTTP/1.1^M
06/10 15:10:57.22 [3160] 2+1: *** / => https://192.168.4.24/ ***
06/10 15:10:57.22 [3160] 2+1: PATH>
https://192.168.4.24:443!delegateserver:443!delegateserver:4547!anonymou
s@delegateserver;1213103457
06/10 15:10:57.22 [3160] 2+1: REQUEST = [https://192.168.4.24:443/] GET
/ HTTP/1.1^M
06/10 15:10:57.22 [3160] 2+1: Authorization: Dont-Read/Write-Cache ON
06/10 15:10:57.22 [3160] 2+1: XHost: (0,0,1) 192.168.4.24 <=
192.168.1.62
06/10 15:10:57.22 [3160] 2+1: connectTO: assume in non-blocking mode
06/10 15:10:57.23 [3160] 2+1: ConnectToServer connected [29]
{192.168.4.24:443 <- 192.168.1.60:4550} [0.016s]
(WIN) 10:57.248 [3160] --socketpair()=0 OK err=10048 0.016/1 (4548 4549)
1/1
06/10 15:10:57.25 [3160] 2+1: ## SSLway 4F4 loadSession 0.000000 (1 0) /
2
06/10 15:10:57.25 [3160] 2+1: ## SSLway ## 0.000000 sescache[2] HIT=2
sR=0 cR=0
06/10 15:10:57.25 [3160] 2+1: ## SSLway server's cert. =
**subject<<certificatedata>> **issuer<<certificatedata>>
06/10 15:10:57.26 [3160] 2+1: willSTLS_SV: ServerFlags=8330
06/10 15:10:57.26 [3160] 2+1: HTTP => (192.168.4.24:443) GET /
HTTP/1.1^M
06/10 15:10:57.26 [3160] 2+1: ## ignore empty Authorization []
06/10 15:10:57.26 [3160] 2+1: HTTP error request: GET / HTTP/1.1^M
06/10 15:10:57.26 [3160] 2+1: HTTP error status: 401 Unauthorized
06/10 15:10:57.28 [3160] 2+1: HTTP error header: Content-Length: 1539^M
06/10 15:10:57.28 [3160] 2+1: HTTP error header: Content-Type:
text/html^M
06/10 15:10:57.28 [3160] 2+1: HTTP error header: Server:
Microsoft-IIS/6.0^M
06/10 15:10:57.28 [3160] 2+1: HTTP error header: WWW-Authenticate:
Negotiate
TlRMTVNTUAACAAAAEAAQADgAAAAFgomilUmxSrCF8XgAAAAAAAAAAKAAoABIAAAABQLODgAA
AA9PAEMARQBWAEUATgBMAE8AAgAQAE8AQwBFAFYARQBOAEwATwABABQAUgBEAC0AVwBBAFMA
MQA4AC0AVgAEACAAbwBjAGUAdgBlAG4AbABvAC4AbwBjAGUALgBuAGUAdAADADYAcgBkAC0A
dwBhAHMAMQA4AC0AdG8AYwBlgAuAHYAZQBuAGwAbwAuAG8AYwBlAC4AbgBlAHQABQAOAG8AY
wBlAC4AbgBlAHQAAAAAAA==^M
06/10 15:10:57.28 [3160] 2+1: HTTP error header: X-Powered-By: ASP.NET^M
06/10 15:10:57.28 [3160] 2+1: HTTP error header: Date: Tue, 10 Jun 2008
13:13:07 GMT^M
06/10 15:10:57.28 [3160] 2+1: #HT11 SERVER ver[HTTP/1.1] conn[]
06/10 15:10:57.28 [3160] 2+1: #HT11 server KEEP-ALIVE
06/10 15:10:57.28 [3160] 2+1: HTTP error header: ^M
06/10 15:10:57.28 [3160] 2+1: HTTP/1.1 401 Content-{Type:text/html
Encoding:[/] Leng:1539} Server:Microsoft-IIS/6.0
06/10 15:10:57.28 [3160] 2+1: ####Gzip [0.000000] - 1539 => 871 [32=>39]
06/10 15:10:57.28 [3160] 2+1: putMIMEmsg: Content-Length: 1539 -> 871
(1454 - 583) [gzip]
06/10 15:10:57.28 [3160] 2+1: #CEcl put Content-Encoding:gzip
06/10 15:10:57.28 [3160] 2+1: SOCKET recv(36)=0 error=0 [0.000] TCP
AF_INET :4549 << :4548 
06/10 15:10:57.28 [3160] 2+1: ## SSLway FCL S-C:1527/1 C-S:363/1
06/10 15:10:57.28 [3160] 2+1: HTTP transmitted:
505head+1539/1539body=>0txt+0bin->871/871, 9i/2o/0f/0.0 ---z-
06/10 15:10:57.28 [3160] 2+1: ShutdownSocket(35)
"\x17\x03\x01\x02\x1B\x9A\xD1\xD9I\xCB\x12!y\x04\xF9b\xD0\xA5\x18zSZ?Y\x
C7[\xFFa\xDA\xAA\x11\x01"
06/10 15:10:57.29 [3160] 2+1: #HT11 putServ(30/31/29) 192.168.4.24:443
06/10 15:10:57.29 [3160] 2+1: HCKA:[0] closed -- x:external filter
06/10 15:10:57.29 [3160] 2+1: disconnected [41]
-@[192.168.1.62]delegateserver:4547 (0.407s)(0)
06/10 15:10:57.29 [3160] 2+1: CFI-wait 1/1 1/2 as=1 xpid=-1,-1 0.00
06/10 15:10:57.29 [3160] 2+1: StickyServer done [broken] 1 req / 1+0/2
conn / 1 sec
06/10 15:10:57.29 [3160] 2+1: SOCKET recv(34)=0 error=0 [0.000] TCP
AF_INET :4548 << :4551 
06/10 15:10:57.29 [3160] 2+1: ## SSLway FSV S-C:2044/1 C-S:364/1
06/10 15:10:57.29 [3160] 2+1: clearServ: 192.168.4.24:443 [0][4F40660/0]
(WIN) 11:12.029 [2636] wait3(N) = 488 [3160] 0, children(alive=0/2)
0.00s
06/10 15:11:12.03 [2636] 2+0: wait3(N) = 488 [3160] 0,
children(alive=0/2) 0.00s 

And this is what happens without the add-rhead value:

First:
06/10 15:31:34.28 [3988] 1+1: HTTP error request: GET / HTTP/1.1^M
06/10 15:31:34.28 [3988] 1+1: HTTP error status: 401 Unauthorized
06/10 15:31:34.29 [3988] 1+1: HTTP error header: Content-Length: 1656^M
06/10 15:31:34.29 [3988] 1+1: HTTP error header: Content-Type:
text/html^M
06/10 15:31:34.29 [3988] 1+1: HTTP error header: Server:
Microsoft-IIS/6.0^M
06/10 15:31:34.29 [3988] 1+1: HTTP error header: WWW-Authenticate:
Negotiate^M
06/10 15:31:34.29 [3988] 1+1: HTTP error header: WWW-Authenticate:
NTLM^M
06/10 15:31:34.29 [3988] 1+1: HTTP error header: X-Powered-By: ASP.NET^M
06/10 15:31:34.29 [3988] 1+1: HTTP error header: Date: Tue, 10 Jun 2008
13:33:44 GMT^M

Second: 
06/10 15:31:34.75 [3260] 2+1: HTTP error request: GET / HTTP/1.1^M
06/10 15:31:34.75 [3260] 2+1: HTTP error status: 401 Unauthorized
06/10 15:31:34.76 [3260] 2+1: HTTP error header: Content-Length: 1539^M
06/10 15:31:34.76 [3260] 2+1: HTTP error header: Content-Type:
text/html^M
06/10 15:31:34.76 [3260] 2+1: HTTP error header: Server:
Microsoft-IIS/6.0^M
06/10 15:31:34.76 [3260] 2+1: HTTP error header: WWW-Authenticate:
Negotiate
TlRMTVNTUAACAAAAEAAQADgAAAAFgomi4Z+hB89OKOIAAAAAAAAAAKAAoABIAAAABQLODgAA
AA9PAEMARQBWAEUATgBMAE8AAgAQAE8AQwBFAFYARQBOAEwATwABABQAUgBEAC0AVwBBAFMA
MQA4AC0AVgAEACAAbwBjAGUAdgBlAG4AbABvAC4AbwBjAGUALgBuAGUAdAADADYAcgBkAC0A
dwBhAHMAMQA4AC0AdgAuAG8AYwBlAHYAZQBuAGAWbwAuAG8AYwBlAC4AbgBlAHQABQAOAG8A
YwBlAC4AbgBlAHQAAAAAAA==^M
06/10 15:31:34.76 [3260] 2+1: HTTP error header: X-Powered-By: ASP.NET^M
06/10 15:31:34.76 [3260] 2+1: HTTP error header: Date: Tue, 10 Jun 2008
13:33:44 GMT^M

Third:
06/10 15:31:49.51 [3336] 5+1: HTTP error request: GET / HTTP/1.1^M
06/10 15:31:49.51 [3336] 5+1: HTTP error status: 401 Unauthorized
06/10 15:31:49.53 [3336] 5+1: HTTP error header: Content-Length: 1656^M
06/10 15:31:49.53 [3336] 5+1: HTTP error header: Content-Type:
text/html^M
06/10 15:31:49.53 [3336] 5+1: HTTP error header: Server:
Microsoft-IIS/6.0^M
06/10 15:31:49.53 [3336] 5+1: HTTP error header: WWW-Authenticate:
Negotiate^M
06/10 15:31:49.53 [3336] 5+1: HTTP error header: WWW-Authenticate:
NTLM^M
06/10 15:31:49.53 [3336] 5+1: HTTP error header: X-Powered-By: ASP.NET^M
06/10 15:31:49.53 [3336] 5+1: HTTP error header: Date: Tue, 10 Jun 2008
13:33:59 GMT^M

Fourth:
06/10 15:31:54.51 [2172] 6+1: HTTP error request: GET / HTTP/1.1^M
06/10 15:31:54.51 [2172] 6+1: HTTP error status: 401 Unauthorized
06/10 15:31:54.53 [2172] 6+1: HTTP error header: Content-Length: 1539^M
06/10 15:31:54.53 [2172] 6+1: HTTP error header: Content-Type:
text/html^M
06/10 15:31:54.53 [2172] 6+1: HTTP error header: Server:
Microsoft-IIS/6.0^M
06/10 15:31:54.53 [2172] 6+1: HTTP error header: WWW-Authenticate:
Negotiate
TlRMTVNTUAACAAAAEAAQADgAAAAFgomiLmjQGs9yfpUAAAAAAAAAAKAAoABIAAAABQLODgAA
AA9PAEMARQBWAEUATgBMAE8AAgAQAE8AQwBFAFYARQBOAEwATwABABQAUgBEAC0AVwBBAFMA
MQA4AC0AVgAEACAAbwBjAGUAdgBlAG4AbABvAC4AbwBjAGUALgBuAGUAdAADADYAcgBkAC0A
dwBhAHMAMQA4AC0AdgAuAG8AYwBlAHYAZQBuAGwAbAWuAG8AYwBlAC4AbgBlAHQABQAOAG8A
YwBlAC4AbgBlAHQAAAAAAA==^M
06/10 15:31:54.53 [2172] 6+1: HTTP error header: X-Powered-By: ASP.NET^M
06/10 15:31:54.53 [2172] 6+1: HTTP error header: Date: Tue, 10 Jun 2008
13:34:04 GMT^M

Kind regards,

Willy.


-----Original Message-----
From: Yutaka Sato [mailto:feedback@delegate.org] 
Sent: Friday, June 06, 2008 10:44 AM
To: feedback@delegate.org
Cc: Nagel, Willy
Subject: Re: [DeleGate-En] Windows Integrated Authentication

Hi,

In message <id> on 06/03/08(21:29:44) you "Nagel, Willy"
<ptihqbdyi-jfjnzgllvonr.ml@ml.delegate.org> wrote:
 |I have setup a server with IIS 6.0 and enabled Integrated Windows
|Authentication.
 |
 |I have setup delegate with the following config file:
 |
 |-Pip_to_listen_on:443
 |ADMIN=admin@address..
 |DGROOT="/DeleGate/" 
 |SERVER=https
 |DELAY=reject:0,unknown:0
 |HTTPCONF=methods:*
 |STLS="fsv,fcl,sslway -cert lib/cert.crt -key lib/cert.key"
 |MOUNT="/* https://mounted_ip/* via=ip_address"
 |REACHABLE=ip_address:443
 |RELIABLE="*"
 |
 |This configuration works with all sites, except with sites that have
|Integrated Windows Authentication.
 |When I use the same configuration with Basic Authentication, this does
|work.
 |
 |Usually, when enabling both Integrated Windows Authentication and
Basic  |Authentication on a site in IIS and Integrated Windows
Authentication  |doesn't apply, you're authenticated using Basic
Authentication.
 |
 |Is this at all possible with Delegate? Or do you have any suggestions?

Conveying NTLM authentication over HTTP seems be defined in RFC4559 and
the RFC seems requiring proxies to add a magic field

  Proxy-support: Session-Based-Authentication

to the 401 response message asking NTLM Negotiate from the server.
You can add the field for all response messages with an option like
folows:

  HTTPCONF="add-rhead:Proxy-support:Session-Based-Authentication"

If this workaround works in your case, I'll support it more neatly in
DeleGate.

Cheers,
Yutaka
--
  9 9   Yutaka Sato <y.sato@delegate.org> http://delegate.org/y.sato/
 ( ~ )  National Institute of Advanced Industrial Science and Technology
_<   >_ 1-1-4 Umezono, Tsukuba, Ibaraki, 305-8568 Japan
Do the more with the less -- B. Fuller


Visit Oce at drupa! Register online now: <http://drupa.oce.com>

This message and attachment(s) are intended solely for use by the addressee and may contain information that is privileged, confidential or otherwise exempt from disclosure under applicable law.

If you are not the intended recipient or agent thereof responsible for delivering this message to the intended recipient, you are hereby notified that any dissemination, distribution or copying of this communication is strictly prohibited.

If you have received this communication in error, please notify the sender immediately by telephone and with a 'reply' message.

Thank you for your co-operation.



  admin search upper oldest olders older1 this newer1 newers latest
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
@_@V