Articles delegate-en/4097-4162 of [1-5169] on the server localhost:119
  upper oldest olders older1 this newer1 newers latest
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
range 4097 - 4162   digest:
Delegate-CLOSE_WAIT problem
  09/01-18:50 . 4097 (Yutaka Sato) [44]
  Hi, If this happens on usual situation, caused by DeleGate, it must have been fixed. So I think there are something unusual in your case, but I don't know anything about it. Informations as follows
FW: [DeleGate-En] Windows Integrated Authentication
  09/02-21:15 . 4098  "Nagel, Willy" <> [602]
  Hi Yutaka, This doesn't seem to resolve the issue. Maybe you have another clue? Here's what appears in the logfile (beneath this logfile are results when not using the HTTPCONF add-rhead value): 06/
  09/03-03:17 . 4099 (Yutaka Sato) [23]
  Hi, It seems that I implemented "NTLM over HTTP" in DeleGate/9.8.2 as CHANGES file records: Thus recent DeleGate should work with it with "-Enh" option. Cheers, Yutaka 9 9 Yutaka Sato <y.sato@delega
SSL no shared cipher
  09/04-08:19 . 4100  =?ISO-8859-15?Q?Andr=E9_Egners?= <> [17]
  Hi. I tested the new Diffie-Hellman functionality a little more thoroughly and it turns out that there is a problem. If I start up the server as a https proxy with the necessary dhparam in place (th
  09/04-15:27 . 4101 (Yutaka Sato) [30]
  Andre, I don't know how to reproduce it but it might be solved by disabling the SSL context/session cache of DeleGate as follows: TLSCONF=cache:no Cheers, Yutaka 9 9 Yutaka Sato <
  09/04-17:13 . 4102  =?ISO-8859-1?Q?Andr=E9_Egners?= <> [38]
  Thanks, this actually solved the problem. Regards, Andre Yutaka Sato schrieb:
FW: [DeleGate-En] Windows Integrated Authentication
  09/04-19:12 . 4103  "Nagel, Willy" <> [120]
  Hi Yutaka, Thanks for your reply. I now have the following configuration: -Pip-to-listen-on:443 ADMIN=admin@oce.. DGROOT="/DeleGate/" DELAY=reject:0,unknown:0 SERVER=https AUTHORIZER=-ntht HTTPCONF=
  09/05-11:12 . 4104 (Yutaka Sato) [71]
  Hi Willy, First of all, it seems that I disabled the ability to relay NTLM authentication with AUTHORIZER=-ntht or -Enh. It should be fixed as the enclosed patch. I uploaded the modified version as
  09/05-13:12 . 4105  arvin degamo <> [30]
  Hi, Our company decided to install a delegate proxy server. Can i ask some tips and procedures on how i can install it? Can you give me some tips because my boss wants a presentation before we insta
FW: [DeleGate-En] Windows Integrated Authentication
  09/05-16:09 . 4106  "Nagel, Willy" <> [620]
  Hi Yutaka, Thanks for your reply. I've been testing using the same config file, with 9.8.5-pre1, but I'm still unsuccessfull. No traffic appears to be going to the destination server (when looking i
  09/05-16:57 . 4107 (Yutaka Sato) [23]
  Hi Willy, Something seem bad with SSL, and/or with running as a background service. I'll test it by myself but you are recommended to test it without SSL and/or running your DeleGate in foregroud (w
  09/05-18:33 . 4108 (Yutaka Sato) [684]
  Hi Willy, I tested it with the folloing configuration: -P9443 DGROOT=/DeleGate SERVER=https AUTHORIZER=-ntht STLS=fcl MOUNT="/* http://localhost:9080/*" where http://localhost:9080 is IIS with NTLM
  09/05-18:34 . 4109  "Nagel, Willy" <> [219]
  Hi Yutaka, I already tested using http in stead of https. In a setup when proxying for IIS without Integrated Windows Authentication, all works fine with the certificates. I now used the following c
  09/05-18:51 . 4110 (Yutaka Sato) [27]
  Hi Willy, With which browser and what URL are you accessing the DeleGate? If you are accessing the DeleGate with "non-local hostname" with MSIE, NTLM is not enabled by default. <URL:http://support.m
  09/05-19:10 . 4111  "Nagel, Willy" <> [87]
  Hi Yutaka, I'm using MSIE7. Normally, when connecting to an NTLM enabled site from a non-domain computer / non-local hostname, you get a popup in which you'll have to enter your credentials. I have
  09/05-19:21 . 4112 (Yutaka Sato) [36]
  Hi Willy, I'm reminded that this is the reason why I did not document well about NTHT. NTHT is only available with MSIE with a URL of restricted form of host-name or with a special configuration of
Socks bind timeout
  09/07-22:55 . 4113  "Andre E." <> [57]
  Hi. While trying out the BIND capability of the SOCKS server I came across the following behavior. There seems to be timeout which closes the socket opened with the BIND command. I also tested this
DeleGate/9.8.4 (BETA) -- fixes & ext. for WindowsCE, HTTP, SSL, authentication
  09/08-15:59 . 4114 (Yutaka Sato) [44]
  Dear DeleGate users, I inform you of the new release of DeleGate available as follows: DeleGate/9.8.4 (BETA) -- fixes & ext. for WindowsCE, HTTP, SSL, authentication This release includes fixes and
FW: [DeleGate-En] Windows Integrated Authentication
  09/08-16:20 . 4115  "Nagel, Willy" <> [115]
  Hi Yutaka, Thanks for your help, but I'm still unsuccessfull. I now user the following config: -Plisten_ip:80 AUTHORIZER=-login ADMIN=admin@test.. DGROOT=/DeleGate SERVER=http HTTPCONF=bugs:do-authc
DeleGate as FTP Authentication Proxy
  09/09-02:55 . 4116  "Gusti Benawi" <> [16]
  Hello, when using DeleGate as an FTP-Reverse Proxy, ist it possible to tell DeleGate to do the authentication with the client before connecting to the FTP server in the local network? delegated -v -
  09/09-04:00 . 4117  "Gusti Benawi" <> [25]
  I just found out that sending %U:%P to MYAUTH will do the job delegated -v -P2121 SERVER=ftp AUTHORIZER=-pam MOUNT="/* ftp://server:port/*" MYAUTH="%U:%P" Best regards, G. Benawi Ist Ihr Browser Vis
performance measurements and socks question
  09/10-20:20 . 4118  Andre <> [974]
  Hi Yutaka. We did some performance measurements with Delegated and Squid in our research group. Our setup builds a chain of 3 SSL proxies using the CONNECT command of HTTP. We would like to share ou
FW: [DeleGate-En] Windows Integrated Authentication
  09/11-09:37 . 4119 (Yutaka Sato) [24]
  Hi Willy, I found that I coded it by LogonUser() with fixed domain "." thus you can only use the account which is local to the host machine of DeleGate (without domain). I'll try to extend it see do
Socks bind timeout
  09/11-10:51 . 4120 (Yutaka Sato) [28]
  Hi, You can change the timeout of accept on a socket with a parameter as TIMEOUT=acc:180 of which default is TIMEOUT=acc:10. Cheers, Yutaka 9 9 Yutaka Sato <>
performance measurements and socks question
  09/11-11:51 . 4121 (Yutaka Sato) [48]
  Hi, Note that disabling the SSL cache with "TLSCONF=cache:no" will reduce the performance, possibly significantly. Also conditional SSL with "STLS=-fcl" (not with "STLS=fcl") might reduce the perfor
  09/11-12:06 . 4122 (Yutaka Sato) [20]
  Hi, Also the default behavior of DeleGate for on-demand dynamic process generation will reduce the performance due to the cost for fork/spawn processes. It could be faster with a fixed number of pro
  09/11-13:06 . 4123 (Yutaka Sato) [30]
  Hi, If your intension is just to use a persistent port (as 80/HTTP) to accept client's connection via the SOCKS server, (not to repeat ACCEPT on the same SOCKS connection), you can use SRCIF with PO
  09/11-20:16 . 4124  Andre <> [61]
  Hi. The functionality you implemented in the VSAP protocol is actually not possible with other SOCKS implementations and I also suspected this to be an extension of the socks protocol. But the possi
  09/11-21:10 . 4125  Andre <> [32]
  Yutaka Sato schrieb: This is my intention, but I would like to be able to do this at runtime, so that I send a command to the server server that there is a service X which wants to accept connection
DeleGate as FTP Authentication Proxy
  09/11-22:55 . 4126  "Gusti Benawi" <> [51]
  Hello, I am trying to use TLS connection with the client and TCP with the server in connection with AUTHORIZER. Using following configuration: delegated -v -P2121 SERVER=ftp AUTHORIZER=serverhost MO
  09/11-23:34 . 4127 (Yutaka Sato) [47]
  Hi, You are right. It'll be fixed as the enclosed patch in the next release. Thank you. Cheers, Yutaka 9 9 Yutaka Sato <> ( ~ ) National Institute of A
performance measurements and socks question
  09/11-23:46 . 4128 (Yutaka Sato) [52]
  Sorry, it is not "PORTS" but "PORT" as the reference manual says :p I don't see the insufficiency by PORT and SRCIF for your requirement. If necessary, you can select a port to be bound dynamically
VSAP and HTTP/ACCEPT (Re: performance measurements and socks question)
  09/12-00:23 . 4129 (Yutaka Sato) [69]
  Hi, The only documentation of VSAP is in its source file "src/vsap.c" VSAP was designed to replace the SOCKS protocol (but not :p) It is totally different from SOCKS protocol (but can wrap it if nec
Allowing tcprelay during a time window
  09/12-02:28 . 4130  Sunil S <> [28]
  Hi, Yutaka, I tried to use : delegated -v -f -P$ListenPort ADMIN=nobody@nowhere.. MAXIMA=conpch:1 RELIABLE=$ReliableIP PERMIT=*:-T.$StartTime-$EndTime:* RES_WAIT=0 TIMEOUT=silence:5m SERVER=tcprelay
performance measurements and socks question
  09/13-18:43 . 4131  "Andre E." <> [86]
  Hi. I played around with the VSAP protocol as well as with the HTTP ACCEPT method and it works a long as I'm only dealing with one client. This is probably due to the fact that once a client connect
Allowing tcprelay during a time window
  09/14-21:09 . 4132 (Yutaka Sato) [72]
  Hi, Your guess on the behavior of DeleGate is very reasonable but it is not so yet. I think it should be implemented in future maybe in DeleGate/10.X. As a workaround for the time being, I made a ge
performance measurements and socks question
  09/14-21:36 . 4133 (Yutaka Sato) [31]
  Hi, To enable multiple-parallel clients to do bind on the same port, you need to do either A) reserving the port with the PORT parameter to be shared in child DeleGate processes, or B) running DeleG
  09/14-23:17 . 4134 (Yutaka Sato) [81]
  Hi, Sorry, I noticed B) is not true in the exsisting implementation. It can be enabled with the enclosed patch. Cheers, Yutaka 9 9 Yutaka Sato <> ( ~ )
DeleGate/9.8.5 (BETA) -- fixes for Windows
  09/16-02:37 . 4135 (Yutaka Sato) [48]
  Dear DeleGate users, I inform you of the new release of DeleGate available as follows: DeleGate/9.8.5 (BETA) -- fixes for Windows This release includes fixes mainly for Windows. FIX don't remove Con
performance measurements and socks question
  09/16-20:12 . 4136  "Andre E." <> [45]
  Hi Yutaka. Thanks again for all the effort. Your patch works and your explanation actually helped a lot. In another message from you, you said the die VSAP protocol could wrap SOCKS if necessary. Do
Allowing tcprelay during a time window
  09/17-16:54 . 4138  Sunil S <> [150]
  Dear Yutaka, Thank you very much for the prompt response. With the patch, it is now terminating the connection at the end of PERMIT period as required! Thanks. Just a side note - the patch applying
  09/17-17:34 . 4139 (Yutaka Sato) [19]
  Hi, To which version did you applied it? The latest version (9.8.5) was released including the extension thus the patch is not necessary (and is not applicable). Cheers, Yutaka 9 9 Yutaka Sato <
performance measurements and socks question
  09/17-20:07 . 4140  "Andre E." <> [31]
  Hi. I've talked with my colleagues and we discussed various possibilities, but we did not come up with a solution yet. So here is a more detailed explanation about what we would like to achieve. We
Allowing tcprelay during a time window
  09/17-20:41 . 4141  Sunil S <> [53]
  Hi, I applied it to 9.8.4-pre1 itself, as the patch was against it. (even though I had 9.8.5 downloaded..). Now I will upgrade to 9.8.5. Thank you, Yutaka, Regards Sunil --- Original Message --- Fro
FTP to SFTP file size problem
  09/17-22:39 . 4142  "Pierre Lessard" <> [63]
  Hello! We are using Delegate v9.7.7 and experiencing ftp transferts drop when the file size is reaching over 10 mb. Is there are parameter to specify that size anywhere or is this a bug? We are usin
performance measurements and socks question
  09/18-00:24 . 4143 (Yutaka Sato) [48]
  Hi, First of all and needless to say, you must not use illegally any proxies and must follow the acceptable usage policy of each proxy. Could you tell me the situation where such relay is necessary?
  09/18-07:16 . 4144  "Andre E." <> [43]
  We don't indent misusing proxy servers or illegally modifying them in any way. The thing I am working on is a part of a research project in my university which is about anonymous communication. It i
FTP to SFTP file size problem
  09/18-16:45 . 4145 (Yutaka Sato) [33]
  Hi, It is hard coded in src/sftp.c: The only way to escape the restriction is change the value and recompile DeleGate. Note that the implementation of sftp/FTP gateway by DeleGate is very tentative
Stream Control Protocol (SCP)
  09/23-20:09 . 4147  "Andre E." <> [10]
  Hi again. Will future versions of delegate by any chance contain an implementation of the Stream Control Protocol? * *
SESSION Control Protocol (SCP)
  09/23-21:02 . 4148  "Andre E." <> [11]
  Hi again...I'm sorry, it's Session Control Protocol, not Stream Control Protocol. Will future versions of delegate by any chance contain an implementation of the SESSION Control Protocol? * http://t
Setup HTTPS reverse proxy
  09/23-23:43 . 4149  Jaco Lesch <> [20]
  Hi Anybody have a procedure to setup delegate for a reverse HTTPS proxy with public certificates? The main problem I have is to setup the certificates and point SSLWAY to the appropriate pem files.
  09/25-16:09 . 4150 (Yutaka Sato) [26]
  [the command line arguments] delegated -P8443 SERVER=https STLS=fcl MOUNT="/* http://server/*" See <URL:> See <URL:
SESSION Control Protocol (SCP)
  09/25-21:11 . 4151 (Yutaka Sato) [32]
  Why you need it? I thought a common session control layer as in the OSI reference model should have been introduced when HTTP upgraded from 1.0 to 1.1 in which "Keep-Alive" became the default. If in
performance measurements and socks question
  09/26-18:49 . 4152  "Andre E." <> [70]
  Hi again. Sorry if this seems a bit pushy but I have another question ;) In context of the thread, I would be nice if it were possible to establish a connection to the server, maybe via VSAP oder HT
  09/28-18:56 . 4153  Andrテゥ Egners <> [5]
  Hi. Sorry for the hassle. I overlooked your message from the 25th. Andre
  09/30-12:50 . 4159  arvin degamo <> [25]
  Hi, Anybody can help me on how i can setup delegate in windows 2003 server. Please help me on how to block websites which is not important. Tnx, Arvin
  09/30-13:37 . 4160 (Yutaka Sato) [20]
  The followig is an example of the command line for DeleGate as a HTTP proxy which rejects access to website www1, www2, www3, ... See <URL:> See <UR
  09/30-14:45 . 4161  Arvin Degamo <> [130]
  Hi Yutaka, Thanks for your reply. But it doesn't work. Please see my configuration. ADMIN=me@you..<mailto:ADMIN=me@you..> -P8080 REJECT="" SERVER=http Please help me on how to bloc
  09/30-17:29 . 4162  arvin degamo <> [12]
  Hello, Anybody could help me on how to setup delegate in the following scenario. Cheers, Gorio
Empty-Articles = [4137][4146][4154][4155][4156][4157][4158]
  admin search upper oldest olders older1 this newer1 newers latest
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
Generated:01/22 10:00:20 (2 sec) Expires:01/22 16:00:18 @_@V