Article delegate-en/4020 of [1-5033] on the server localhost:7119
  upper oldest olders older1 this newer1 newers latest
search
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
[Reference:<_A4018@delegate-en.ML_>]
Newsgroups: mail-lists.delegate-en
[DeleGate-En] Re: Testing the HTTP/HTTPS and FTP Delegate proxy
29 Jul 2008 07:31:44 GMT feedback@delegate.org (Yutaka Sato)
The DeleGate Project 
Hi,

In message <_A4018@delegate-en.ML_> on 07/28/08(21:54:09)
you "Jean Aumont" <pvahqbdyi-qprr6uaky3y6.ml@delegate.org> wrote:
 |Hi Yutaka,
 |
 |Thanks for your prompt response on Question 1.
 |It is exactly what I was looking for.
 |
 |I wish you would had answer the second Question also.
 |You probably just missed it since my email was so long.
 |Here is the question again, can you take a look at it ???
 |
 |---------------------------------------------------------------------
 |Question 2 - Ftp proxy
 |---------------------------------------------------------------------
 |# more ftp.cfg
 |SERVER="ftp"
 |REMITTABLE="ftp"
 |-P2021
 |# ============
 |# Section ftp
 |# ============
 |AUTHORIZER="-none:ftp:ftp.openbsd.org:10.*.*.*"
 |AUTHORIZER="-list{uid1:pwd1,uid2:pwd2}:ftp:ftp.sun.com:10.*.*.*"
 |AUTHORIZER="-list{uid3:pwd3}:ftp:ftp.freebsd.com:10.*.*.*"
 |AUTHORIZER="-list{uid1:pwd1}:ftp:*:10.*.*.*"
 |
 |
 |With this configuration, I could never login to the Delegate FTP proxy 
 |with the user id "uid2" or "uid3", the only user id allow is "uid1" with
 |password "pwd1". 
 |This seems to be a bug in version 9.8.2-pre47.

You are asking somewhat unsupported or unspecified feature rathar than a bug.
The AUTHORIZER parameter, if not used as a MOUNT option, is for a DeleGate
as an origin FTP server not as a FTP proxy.

And I'm not sure how you can know which is the destination server when you
are trying to login, or how you will specify the destination server later.

 |Also, is there a way to give access to a certain destination 
 |without any authentification on the FTP proxy. 

Most of FTP client program ask the user the authentication before connecting
to the server, regardless wheter or not the information is used.
There is nothing to do by DeleGate to suppress it.

 |This is what I was trying to accomplish with the line: 
 |    AUTHORIZER="-none:ftp:ftp.openbsd.org:10.*.*.*"
 |
 |But I do not see a way to initiate the connection to the FTP 
 |Proxy without being prompt for a user and password.

Which FTP client program are you using?

Your usage might be realized extending FTP proxy so that is apply
authentication information as:
USER user@server + PASS pass >>> AUTHORIZER="-list{user:pass}:*:server"
Or by using DeleGate as a origin FTP server or a reverse FTP proxy.
Another solution is using NAT by iptables on Linux and use DeleGate
on it as a transparent FTP proxy.

Cheers,
Yutaka
--
  9 9   Yutaka Sato <y.sato@delegate.org> http://delegate.org/y.sato/
 ( ~ )  National Institute of Advanced Industrial Science and Technology
_<   >_ 1-1-4 Umezono, Tsukuba, Ibaraki, 305-8568 Japan
Do the more with the less -- B. Fuller
  admin search upper oldest olders older1 this newer1 newers latest
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
@_@V