Subj : Re: Binkd and TLS
To   : Tommi Koivula
From : Wilfred van Velzen
Date : Sat Dec 14 2019 03:53 pm

Hi Tommi,

On 2019-12-14 16:27:16, you wrote to me:

TK>>> ncat: unrecognized option '--ssl-alpn'

WvV>> Mine supports is neither, but --ssl (or even better --ssl-verify)
WvV>> should also work. (Then leave out the 'binkp' which is the argument
WvV>> for the --ssl-alpn option.)

TK> Well, in my other pi (3b+ with ubuntu 18) it works:

TK> + 16:15 [17609] call to 2:221/6@fidonet
TK> + 16:15 [17609] External command 'ncat --ssl-alpn binkp news.fidonet.fi
TK> 24567' started, pid 17610
TK>   16:15 [17609] connected
TK> + 16:15 [17609] outgoing session with news.fidonet.fi:24567
TK> - 16:15 [17609] OPT CRAM-MD5-fdbdb5f989a83885d9744f31fa224eee
TK> + 16:15 [17609] Remote requests MD mode
TK> - 16:15 [17609] SYS mail.fidonet.fi
TK> - 16:15 [17609] ZYZ Tommi Koivula

TK> But still the connection is by ipv4. Funny.

I'm getting:

# date; ncat --ssl news.fidonet.fi 24567
za dec 14 15:53:37 CET 2019
Ncat: Connection refused.

# date; ncat --ssl 2001:41d0:401:3100::1030 24567
za dec 14 15:55:05 CET 2019
Ncat: Connection refused.

# date; ncat --ssl 92.222.75.253 24567
za dec 14 15:55:20 CET 2019
?.OPT CRAM-MD5-96df98185a01b1b27afe1464129b44ee?SYS mail.fidonet.fi?ZYZ Tommi
Koivula?LOC EU?%NDL 100M,IBN,IBNS:24567,CM,NNTP,IPv6?%TIME Sat, 14 Dec 2019
16:5
...

So your stunnel doesn't even seem to be listening on IPv6? And my ncat only
tries IPv6 if given the hostname, so it seems...


Bye, Wilfred.

--- FMail-lnx64 2.1.0.18-B20170815
* Origin: FMail development HQ (2:280/464)