On 26 Oct 2020 at 06:32p, Black Panther pondered and said...

On 27 Oct 2020, 01:21p, Avon said the following...

13:18:12 Poll BINKP node via address lookup: 21:4/100
13:18:12 Queued 1 files (1,636 bytes) for 21:4/100
13:18:12 1-Polling 21:4/100 on slot 1 via BINKP
13:18:12 1-Connecting to net4.fsxnet.nz on port 24560
13:18:13 1-Using address 184.155.113.241
13:18:19 1-Unable to connect
13:18:20 Polled 1 systems

Yup, I have it down right now. Can you take a look and make sure there
is no packet password set? I've gotten three message archives from
1/100, and all three were flagged as 'Security Violation'.

I checked, there is no packet password set, only TIC/Areafix and BinkP

--- Mystic BBS v1.12 A46 2020/08/26 (Windows/32)
* Origin: Agency BBS | Dunedin, New Zealand | agency.bbs.nz (21:1/101)

On 27 Oct 2020 at 01:35p, Avon pondered and said...

I checked, there is no packet password set, only TIC/Areafix and BinkP

Got a reply now :)

13:38:16 1-Polling 21:4/100 on slot 1 via BINKP
13:38:16 1-Connecting to net4.fsxnet.nz on port 24560
13:38:16 1-Using address 184.155.113.241
13:38:17 1-Connected by IPV4 to 184.155.113.241
13:38:17 1-System fsxHUB Niba [NET4]
13:38:17 1-SysOp Black Panther
13:38:17 1-Location Rio Rancho, NM, USA
13:38:17 1-Info NDL 115200,TCP,BINKP
13:38:17 1-Info TIME Tue, 27 Oct 2020 11:38:20 +1100
13:38:17 1-Mailer binkd/1.1a-109/Linux binkp/1.1
13:38:18 1-Info TRF 0 0
13:38:18 1-Session ended (0 sent, 0 rcvd, 0 skip)
13:38:19 Polled 1 systems

--- Mystic BBS v1.12 A46 2020/08/26 (Windows/32)
* Origin: Agency BBS | Dunedin, New Zealand | agency.bbs.nz (21:1/101)

On 27 Oct 2020, 01:35p, Avon said the following...

Yup, I have it down right now. Can you take a look and make sure ther is no packet password set? I've gotten three message archives from 1/100, and all three were flagged as 'Security Violation'.

I checked, there is no packet password set, only TIC/Areafix and BinkP

Ok, I must have something not set right then. I just got another archive from 1/100 that HPT changed to .sec for security violation. However, if I unzip it manually, the packets will toss just fine...

Maybe for now, just set the hub to raw packets, by removing the 'zip' from the archive setting.

Even the logs don't help:

O Oct:27:2020:11:35:41 Look incoming file /fido/mailer/in/fffd0000.tuv
f Oct:27:2020:11:35:41 src/common.c:612: old: '/fido/mailer/in/fffd0000.tuv' new: '/fido/mailer/in/fffd0000.tos'
7 Oct:27:2020:11:35:41 bundle /fido/mailer/in/fffd0000.tuv: renaming to .tos
A Oct:27:2020:11:35:41 bundle /fido/mailer/in/fffd0000.tos: tossing in unsecure inbound, security violation
A Oct:27:2020:11:35:41 Renaming pkt/arc to .sec

And that will full logging...


---

Black Panther(RCS)
aka Dan Richter
Castle Rock BBS
telnet://bbs.castlerockbbs.com
http://www.castlerockbbs.com
http://github.com/DRPanther
The sparrows are flying again...

--- Mystic BBS v1.12 A47 2020/10/20 (Linux/64)
* Origin: Castle Rock BBS - bbs.castlerockbbs.com - (21:1/186)

On 26 Oct 2020 at 06:41p, Black Panther pondered and said...

Ok, I must have something not set right then. I just got another archive from 1/100 that HPT changed to .sec for security violation. However, if
I unzip it manually, the packets will toss just fine...

would it help if I set things to raw packets for 4/100 from 1/100 ?

--- Mystic BBS v1.12 A46 2020/08/26 (Windows/32)
* Origin: Agency BBS | Dunedin, New Zealand | agency.bbs.nz (21:1/101)

On 27 Oct 2020, 01:43p, Avon said the following...

would it help if I set things to raw packets for 4/100 from 1/100 ?

Let's give that a shot. I've been waiting for a packet to come in from a net 4 system to see if they toss properly.

BTW, is Hub 3 down? I'm seeing connections failed...


---

Black Panther(RCS)
aka Dan Richter
Castle Rock BBS
telnet://bbs.castlerockbbs.com
http://www.castlerockbbs.com
http://github.com/DRPanther
The sparrows are flying again...

--- Mystic BBS v1.12 A47 2020/10/20 (Linux/64)
* Origin: Castle Rock BBS - bbs.castlerockbbs.com - (21:1/186)

Re: Re: Hub Change
By: Black Panther to Avon on Mon Oct 26 2020 06:56 pm

BTW, is Hub 3 down? I'm seeing connections failed...

No?

This message came via Hub 3...

...ëîåï

... Committee work is like a soft chair...easy to get into but hard to get out --- SBBSecho 3.11-Linux
* Origin: I'm playing with ANSI+videotex - wanna play too? (21:2/116)

On 27 Oct 2020, 12:08p, deon said the following...

You're still using my container image?

If so, you can do SSL - just map a port to 24553 and it should work.

Ok, thank you. Right now I'm having 'unzip' issues... Any message archive that comes in is getting set as a security violation...


---

Black Panther(RCS)
aka Dan Richter
Castle Rock BBS
telnet://bbs.castlerockbbs.com
http://www.castlerockbbs.com
http://github.com/DRPanther
The sparrows are flying again...

--- Mystic BBS v1.12 A47 2020/10/20 (Linux/64)
* Origin: Castle Rock BBS - bbs.castlerockbbs.com (21:1/186)

On 27 Oct 2020, 01:43p, Avon said the following...

Ok, I must have something not set right then. I just got another arch from 1/100 that HPT changed to .sec for security violation. However, I unzip it manually, the packets will toss just fine...

would it help if I set things to raw packets for 4/100 from 1/100 ?

Alright. I think I've got it working now... I kept thinking it was a 'packer' issue somewhere. I actually had my directories swapped between BinkD and Husky. The insecure BinkD was my secure HPT, and vice versa. The packets were a security violation because they didn't have packet passwords in them... <smack>


---

Black Panther(RCS)
aka Dan Richter
Castle Rock BBS
telnet://bbs.castlerockbbs.com
http://www.castlerockbbs.com
http://github.com/DRPanther
The sparrows are flying again...

--- Mystic BBS v1.12 A47 2020/10/20 (Linux/64)
* Origin: Castle Rock BBS - bbs.castlerockbbs.com - (21:1/186)

On 26 Oct 2020 at 08:39p, Black Panther pondered and said...

Alright. I think I've got it working now... I kept thinking it was a 'packer' issue somewhere. I actually had my directories swapped between BinkD and Husky. The insecure BinkD was my secure HPT, and vice versa.
The packets were a security violation because they didn't have packet passwords in them... <smack>

Righto... :)

Would you like me to start sending compressed packets again?

--- Mystic BBS v1.12 A46 2020/08/26 (Windows/32)
* Origin: Agency BBS | Dunedin, New Zealand | agency.bbs.nz (21:1/101)

On 27 Oct 2020, 04:17p, Avon said the following...

Would you like me to start sending compressed packets again?

You can if you want. I'll probably leave the hub to sent raw packets...


---

Black Panther(RCS)
aka Dan Richter
Castle Rock BBS
telnet://bbs.castlerockbbs.com
http://www.castlerockbbs.com
http://github.com/DRPanther
The sparrows are flying again...

--- Mystic BBS v1.12 A47 2020/10/20 (Linux/64)
* Origin: Castle Rock BBS - bbs.castlerockbbs.com - (21:1/186)

On 26 Oct 2020 at 09:22p, Black Panther pondered and said...

You can if you want. I'll probably leave the hub to sent raw packets...

OK let's try this, I'll restart compression now.

--- Mystic BBS v1.12 A46 2020/08/26 (Windows/32)
* Origin: Agency BBS | Dunedin, New Zealand | agency.bbs.nz (21:1/101)

On 27 Oct 2020, 12:08p, deon said the following...

You're still using my container image?

Yup. It's finally up and running correctly... :)

If so, you can do SSL - just map a port to 24553 and it should work.

I've just done that, so if you and Avon want to try using the SSL connection, give it a shot. It should work now.

Also, Deon, is it possible to change the time within the container? The time keeps throwing me off... :)


---

Black Panther(RCS)
aka Dan Richter
Castle Rock BBS
telnet://bbs.castlerockbbs.com
http://www.castlerockbbs.com
http://github.com/DRPanther
The sparrows are flying again...

--- Mystic BBS v1.12 A47 2020/10/20 (Linux/64)
* Origin: Castle Rock BBS - bbs.castlerockbbs.com (21:1/186)

On 26 Oct 2020 at 09:45p, Black Panther pondered and said...

I've just done that, so if you and Avon want to try using the SSL connection, give it a shot. It should work now.

Nope not quite working yet

16:48:01 Poll BINKP node via address lookup: 21:4/100
16:48:01 Queued 4 files (8,044 bytes) for 21:4/100
16:48:01 1-Polling 21:4/100 on slot 1 via BINKP
16:48:01 1-Connecting to net4.fsxnet.nz on port 24553
16:48:01 1-Using address 184.155.113.241
16:48:03 1-Connected by IPV4 SSL to 184.155.113.241
16:48:03 1-Connection dropped (Completed transfer Received TLS alert message 16:48:03 1-Connection lost
16:48:03 1-Authorization failed
16:48:03 Polled 1 systems

--- Mystic BBS v1.12 A46 2020/08/26 (Windows/32)
* Origin: Agency BBS | Dunedin, New Zealand | agency.bbs.nz (21:1/101)

On 27 Oct 2020, 04:48p, Avon said the following...

I've just done that, so if you and Avon want to try using the SSL connection, give it a shot. It should work now.

Nope not quite working yet
16:48:03 1-Connected by IPV4 SSL to 184.155.113.241
16:48:03 1-Connection dropped (Completed transfer Received TLS alert

So, any idea how to define multiple iport numbers in BinkD, without it throwing an error?

I've tried:
iport 24560
iport 24553

and I get an error saying the port is already bound

Then I tried:
iport 24560 24553

and got 1 argument(s) required
error in configuration

...and then:
iport 24560, 24553

and got the same error...

I can run 'telnet' to bbs.castlerockbbs.com 24553, and something is answering, as I get the 'Escape character is '^]'.' but I'm not sure what is answering, because BinkD should respond with the location information and node addresses...


---

Black Panther(RCS)
aka Dan Richter
Castle Rock BBS
telnet://bbs.castlerockbbs.com
http://www.castlerockbbs.com
http://github.com/DRPanther
The sparrows are flying again...

--- Mystic BBS v1.12 A47 2020/10/20 (Linux/64)
* Origin: Castle Rock BBS - bbs.castlerockbbs.com - (21:1/186)

Re: Re: Hub Change
By: Black Panther to deon on Mon Oct 26 2020 07:48 pm

Ok, thank you. Right now I'm having 'unzip' issues... Any message archive that comes in is getting set as a security violation...

Hmm... pretty much all my links use zip - so I have not problems.

So, I'm going to guess you have something special with your hpt config?

...ëîåï

... God is dead. But don't worry - the Virgin Mary is pregnant again.
--- SBBSecho 3.11-Linux
* Origin: I'm playing with ANSI+videotex - wanna play too? (21:2/116)

Re: Re: Hub Change
By: Black Panther to Avon on Mon Oct 26 2020 09:22 pm

Would you like me to start sending compressed packets again?

You can if you want. I'll probably leave the hub to sent raw packets...

So I had some troubles with raw packets with HPT.

There was a scenario, where HPT create the same packet (filename) for more than 1 downlink, and the last one created was the winner.

I changed to use archives which seemed to solve it.

Probably also delaying between "toss", "scan" and "pack" helped (ie: a 1 second delay)...

...ëîåï

... Celibacy is not hereditary.
--- SBBSecho 3.11-Linux
* Origin: I'm playing with ANSI+videotex - wanna play too? (21:2/116)

Re: Re: Hub Change
By: Black Panther to deon on Mon Oct 26 2020 09:45 pm

Also, Deon, is it possible to change the time within the container? The time keeps throwing me off... :)

Ahh, its probably set to Melbouren time <chuckle> :)

I'll think about how the container can handle that better.

As a quickfix, you could map your hosts /etc/localtime into the container - by starting it with

-v /etc/localtime:/etc/localtime

...ëîåï

... Anything anybody can say about America is true.
--- SBBSecho 3.11-Linux
* Origin: I'm playing with ANSI+videotex - wanna play too? (21:2/116)

On 26 Oct 2020 at 10:01p, Black Panther pondered and said...

So, any idea how to define multiple iport numbers in BinkD, without it throwing an error?

No I have only ever used one to run BinkD on say 24557 etc.

The CFG file just mentions this

[snip]

# Format: iport port_number
#
# iport = Keyword
# port_number = The TCP port you wish to use instead, default is 24554 but could be anything you like, this only really needs
# to be used if the default port is already in use.
#
# ***Edit this optionally, uncomment iport and see above example.
# iport binkp
# port_number 24554
#
# ***Edit this optionally, you dont really need to change this value.
Uncomment and see example for iport.
# oport binkp 24554

--- Mystic BBS v1.12 A46 2020/08/26 (Windows/32)
* Origin: Agency BBS | Dunedin, New Zealand | agency.bbs.nz (21:1/101)

On 27 Oct 2020, 03:08p, deon said the following...

So I had some troubles with raw packets with HPT.

There was a scenario, where HPT create the same packet (filename) for
more than1 downlink, and the last one created was the winner.

That shouldn't happen here, as I use fileboxes for all the nodes. I will probably change it back to archiving them though.

Probably also delaying between "toss", "scan" and "pack" helped (ie: a 1 seconddelay)...

That's not a bad idea. Just to be on the safe side. :)


---

Black Panther(RCS)
aka Dan Richter
Castle Rock BBS
telnet://bbs.castlerockbbs.com
http://www.castlerockbbs.com
http://github.com/DRPanther
The sparrows are flying again...

--- Mystic BBS v1.12 A47 2020/10/20 (Linux/64)
* Origin: Castle Rock BBS - bbs.castlerockbbs.com - (21:1/186)

On 27 Oct 2020, 03:05p, deon said the following...

Ok, thank you. Right now I'm having 'unzip' issues... Any message arc that comes in is getting set as a security violation...

Hmm... pretty much all my links use zip - so I have not problems.

So, I'm going to guess you have something special with your hpt config?

Yup. I had my inbound paths mixed up. HPT and BinkD weren't in sync... :)


---

Black Panther(RCS)
aka Dan Richter
Castle Rock BBS
telnet://bbs.castlerockbbs.com
http://www.castlerockbbs.com
http://github.com/DRPanther
The sparrows are flying again...

--- Mystic BBS v1.12 A47 2020/10/20 (Linux/64)
* Origin: Castle Rock BBS - bbs.castlerockbbs.com - (21:1/186)

On 27 Oct 2020, 03:10p, deon said the following...

Also, Deon, is it possible to change the time within the container? T time keeps throwing me off... :)

Ahh, its probably set to Melbouren time <chuckle> :)

Probably, as the last BinkD log entry is showin the time of 15:20 27Oct, and it's 22:20 26Oct here now. :)

-v /etc/localtime:/etc/localtime

I'll give that a shot when I restart the container. Oh, when you stop a container and restart, is there a way to do that without having to rename it first?


---

Black Panther(RCS)
aka Dan Richter
Castle Rock BBS
telnet://bbs.castlerockbbs.com
http://www.castlerockbbs.com
http://github.com/DRPanther
The sparrows are flying again...

--- Mystic BBS v1.12 A47 2020/10/20 (Linux/64)
* Origin: Castle Rock BBS - bbs.castlerockbbs.com - (21:1/186)

On 27 Oct 2020, 05:18p, Avon said the following...

No I have only ever used one to run BinkD on say 24557 etc.

And BinkD will also answer inbound on 24553?

I must have something else on this system listening on 24553...


---

Black Panther(RCS)
aka Dan Richter
Castle Rock BBS
telnet://bbs.castlerockbbs.com
http://www.castlerockbbs.com
http://github.com/DRPanther
The sparrows are flying again...

--- Mystic BBS v1.12 A47 2020/10/20 (Linux/64)
* Origin: Castle Rock BBS - bbs.castlerockbbs.com - (21:1/186)

On 26 Oct 2020, 10:23p, Black Panther said the following...

I must have something else on this system listening on 24553...

Hmmmm, BinkD should be answering:

sudo ss -tunlp | grep 24553

tcp LISTEN 0 4096 *:24553 *:* users:(("docker-proxy",pid-470395,fd=4))


---

Black Panther(RCS)
aka Dan Richter
Castle Rock BBS
telnet://bbs.castlerockbbs.com
http://www.castlerockbbs.com
http://github.com/DRPanther
The sparrows are flying again...

--- Mystic BBS v1.12 A47 2020/10/20 (Linux/64)
* Origin: Castle Rock BBS - bbs.castlerockbbs.com - (21:1/186)

Re: Re: Hub Change
By: Avon to Black Panther on Tue Oct 27 2020 04:48 pm

Hey Dan,

Nope not quite working yet

16:48:01 Poll BINKP node via address lookup: 21:4/100
16:48:01 Queued 4 files (8,044 bytes) for 21:4/100
16:48:01 1-Polling 21:4/100 on slot 1 via BINKP
16:48:01 1-Connecting to net4.fsxnet.nz on port 24553
16:48:01 1-Using address 184.155.113.241
16:48:03 1-Connected by IPV4 SSL to 184.155.113.241
16:48:03 1-Connection dropped (Completed transfer Received TLS alert message 16:48:03 1-Connection lost
16:48:03 1-Authorization failed
16:48:03 Polled 1 systems

I just tried to connect to you and 24553 is answering, but binkd isnt.

Did I see that you are running on a different port?

If so, you should have binkd running on the default ports inside the container - ie: 24554, but map the port outside of the container , ie -p 24560:24554. This would accept connections from outside the container on port 24560 and patch them through into the container on port 24554.

(Thus you could still have something else outside the container use 24554.)

...ëîåï

... Marie-Joseph? It's a lovely name! It just sounds silly, that's all.
--- SBBSecho 3.11-Linux
* Origin: I'm playing with ANSI+videotex - wanna play too? (21:2/116)

Re: Re: Hub Change
By: Black Panther to Avon on Mon Oct 26 2020 10:01 pm

So, any idea how to define multiple iport numbers in BinkD, without it throwing an error?

I've tried:
iport 24560
iport 24553

If you want binkd to receive multiple ports, you can patch them through with starting docker.

-p <HOST PORT>:24554 and you can have many -p definitions that you want, going to the same port inside the container.

...ëîåï

... An object never serves the same function as its image- or its real name. --- SBBSecho 3.11-Linux
* Origin: I'm playing with ANSI+videotex - wanna play too? (21:2/116)

Re: Re: Hub Change
By: Black Panther to deon on Mon Oct 26 2020 10:22 pm

Howdy,

I'll give that a shot when I restart the container. Oh, when you stop a container and restart, is there a way to do that without having to rename it first?

You can delete it - infact you can start it with --rm so that it auto deletes when it stops.

I have made it ephemeral safe, as long as you put the data you want to keep into a path defined by -v

...ëîåï

... For my birthday I got a humidifier and a de-humidifier... I put them in the same room and let them fight it out.
--- SBBSecho 3.11-Linux
* Origin: I'm playing with ANSI+videotex - wanna play too? (21:2/116)

On 27 Oct 2020, 03:50p, deon said the following...

If so, you should have binkd running on the default ports inside the container- ie: 24554, but map the port outside of the container , ie -p 24560:24554.This would accept connections from outside the container on port 24560 andpatch them through into the container on port 24554.

Why didn't I think of that when I was typing in the command? I've got it running on 24554 inside the container now.

(Thus you could still have something else outside the container use 24554.)

Yup. That's where CRBBS is connected. :)

Also, that worked with setting the time inside the container. I'm back in my time zone now. ;)

Thanks,


---

Black Panther(RCS)
aka Dan Richter
Castle Rock BBS
telnet://bbs.castlerockbbs.com
http://www.castlerockbbs.com
http://github.com/DRPanther
The sparrows are flying again...

--- Mystic BBS v1.12 A47 2020/10/20 (Linux/64)
* Origin: Castle Rock BBS - bbs.castlerockbbs.com - (21:1/186)

On 27 Oct 2020, 03:52p, deon said the following...

If you want binkd to receive multiple ports, you can patch them through withstarting docker.

-p <HOST PORT>:24554 and you can have many -p definitions that you want, goingto the same port inside the container.

Would I forward like -p 24553:24554? That doesn't seem right. I do have -p 24560:24554 -p 24553:24553 in the command line now.


---

Black Panther(RCS)
aka Dan Richter
Castle Rock BBS
telnet://bbs.castlerockbbs.com
http://www.castlerockbbs.com
http://github.com/DRPanther
The sparrows are flying again...

--- Mystic BBS v1.12 A47 2020/10/20 (Linux/64)
* Origin: Castle Rock BBS - bbs.castlerockbbs.com - (21:1/186)

Re: Re: Hub Change
By: Black Panther to deon on Mon Oct 26 2020 10:59 pm

If so, you should have binkd running on the default ports inside the container- ie: 24554, but map the port outside of the container , ie -p 24560:24554.This would accept connections from outside the container on port 24560 andpatch them
through into the container on port 24554.

Why didn't I think of that when I was typing in the command? I've got it running on 24554 inside the container now.

Cool - and your TLS is working now too :)

...ëîåï

... I wonder if we ccan speak through rose-tinted spectacles.
--- SBBSecho 3.11-Linux
* Origin: I'm playing with ANSI+videotex - wanna play too? (21:2/116)

Re: Re: Hub Change
By: Black Panther to deon on Mon Oct 26 2020 11:01 pm

Would I forward like -p 24553:24554? That doesn't seem right. I do have -p 24560:24554 -p 24553:24553 in the command line now.

No, binkd doesnt understand TLS.

The container has an NGINX server in it, listening on 24553 - and will "forward" to localhost 24554.

You can test it with:

openssl s_client -quiet -alpn binkp -connect "net4.fsxnet.nz:24553"

And you should see the familiar binkd welcome message.

...ëîåï

... Da trouble wit computers is, dey got no sense of humor.
--- SBBSecho 3.11-Linux
* Origin: I'm playing with ANSI+videotex - wanna play too? (21:2/116)

On 27 Oct 2020, 03:54p, deon said the following...

You can delete it - infact you can start it with --rm so that it auto deleteswhen it stops.

That will make it easier. I think I have about 10 containers now showing when I run 'docker ps -a'.

I have made it ephemeral safe, as long as you put the data you want to keepinto a path defined by -v

I made sure I put everything where you told me. :)


---

Black Panther(RCS)
aka Dan Richter
Castle Rock BBS
telnet://bbs.castlerockbbs.com
http://www.castlerockbbs.com
http://github.com/DRPanther
The sparrows are flying again...

--- Mystic BBS v1.12 A47 2020/10/20 (Linux/64)
* Origin: Castle Rock BBS - bbs.castlerockbbs.com - (21:1/186)

On 27 Oct 2020, 04:05p, deon said the following...

No, binkd doesnt understand TLS.

The container has an NGINX server in it, listening on 24553 - and will "forward" to localhost 24554.

That would explain a lot.

openssl s_client -quiet -alpn binkp -connect "net4.fsxnet.nz:24553"

And you should see the familiar binkd welcome message.

I sure did! Thank you, again. :)


---

Black Panther(RCS)
aka Dan Richter
Castle Rock BBS
telnet://bbs.castlerockbbs.com
http://www.castlerockbbs.com
http://github.com/DRPanther
The sparrows are flying again...

--- Mystic BBS v1.12 A47 2020/10/20 (Linux/64)
* Origin: Castle Rock BBS - bbs.castlerockbbs.com - (21:1/186)

Re: Re: Hub Change
By: Black Panther to deon on Mon Oct 26 2020 11:10 pm

You can delete it - infact you can start it with --rm so that it auto deleteswhen it stops.

That will make it easier. I think I have about 10 containers now showing when I run 'docker ps -a'.

So, a tip.

The --rm means the stopped container is auto deleted. Or more specifically it is deleted when it is stopped. (A process crashing included.)

A disadvangate of this, is any stdout is lots. (docker log <container id>).

Also, if you want to use container "auto start" (incase something does crash), you cant use --rm.

(But I've been running this container for years, with --rm - it doesnt crash, but if you have troubles, remove --rm until you figure it out.)

...ëîåï

... When Chuck Norris falls in water, Chuck Norris doesn't get wet. Water gets Chuck Norris.
--- SBBSecho 3.11-Linux
* Origin: I'm playing with ANSI+videotex - wanna play too? (21:2/116)

On 26 Oct 2020 at 11:13p, Black Panther pondered and said...

openssl s_client -quiet -alpn binkp -connect "net4.fsxnet.nz:24553"

And you should see the familiar binkd welcome message.

I sure did! Thank you, again. :)

I can again poll using SSL so this is good :)

19:52:21 1-Polling 21:4/100 on slot 1 via BINKP
19:52:21 1-Connecting to net4.fsxnet.nz on port 24553
19:52:21 1-Using address 184.155.113.241
19:52:22 1-Connected by IPV4 SSL to 184.155.113.241
19:52:22 1-System fsxHUB Niba [NET4]
19:52:22 1-SysOp Black Panther
19:52:22 1-Location Rio Rancho, NM, USA
19:52:22 1-Info NDL 115200,TCP,BINKP
19:52:22 1-Info TIME Tue, 27 Oct 2020 00:52:25 -0600
19:52:22 1-Mailer binkd/1.1a-109/Linux binkp/1.1
19:52:23 1-Info TRF 0 0
19:52:23 1-Session ended (0 sent, 0 rcvd, 0 skip)
19:52:25 Polled 1 systems ÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄ

--- Mystic BBS v1.12 A46 2020/08/26 (Windows/32)
* Origin: Agency BBS | Dunedin, New Zealand | agency.bbs.nz (21:1/101)

On 27 Oct 2020, 07:53p, Avon said the following...

I can again poll using SSL so this is good :)

Thanks to Deon, I've got it running. :)


---

Black Panther(RCS)
aka Dan Richter
Castle Rock BBS
telnet://bbs.castlerockbbs.com
http://www.castlerockbbs.com
http://github.com/DRPanther
The sparrows are flying again...

--- Mystic BBS v1.12 A47 2020/10/20 (Linux/64)
* Origin: Castle Rock BBS - bbs.castlerockbbs.com - (21:1/186)

Black wrote (2020-10-26):

On 27 Oct 2020, 12:08p, deon said the following...

You're still using my container image?

Yup. It's finally up and running correctly... :)

If so, you can do SSL - just map a port to 24553 and it should
work.

I've just done that, so if you and Avon want to try using the SSL connection, give it a shot. It should work now.

works fine ...

12:47 [9748] BEGIN, binkd/1.1a-111/Linux -p -P 21:4/100 /srv/ftn/binkd/binkd.cfg
12:47 [9748] creating a poll for 21:4/100@fsxnet (`d' flavour)
12:47 [9748] clientmgr started
$ -d 21:4/100@fsxnet
+ 12:47 [9749] call to 21:4/100@fsxnet
+ 12:47 [9749] External command 'openssl s_client -quiet -connect net4.fsxnet.nz:24553' started, pid 9750
12:47 [9749] connected
+ 12:47 [9749] outgoing session with net4.fsxnet.nz:24560
depth=0 C = AU, ST = VIC, L = Melbourne, O = ACME, OU = Web, CN = localhost verify error:num=18:self signed certificate
verify return:1
depth=0 C = AU, ST = VIC, L = Melbourne, O = ACME, OU = Web, CN = localhost verify return:1
- 12:47 [9749] OPT CRAM-MD5-b02fb93616c10ce314d3474d83af0aee
+ 12:47 [9749] Remote requests MD mode
- 12:47 [9749] SYS fsxHUB Niba [NET4]
- 12:47 [9749] ZYZ Black Panther
- 12:47 [9749] LOC Rio Rancho, NM, USA
- 12:47 [9749] NDL 115200,TCP,BINKP
- 12:47 [9749] TIME Tue, 27 Oct 2020 05:47:56 -0600
- 12:47 [9749] VER binkd/1.1a-109/Linux binkp/1.1
+ 12:47 [9749] addr: 21:4/100@fsxnet
+ 12:47 [9749] addr: 21:4/0@fsxnet
- 12:47 [9749] OPT EXTCMD GZ BZ2
+ 12:47 [9749] Remote supports EXTCMD mode
+ 12:47 [9749] Remote supports GZ mode
+ 12:47 [9749] Remote supports BZ2 mode
+ 12:47 [9749] done (to 21:4/100@fsxnet, OK, S/R: 0/0 (0/0 bytes))
12:47 [9749] session closed, quitting...

---
* Origin: (21:3/102)

deon wrote (2020-10-27):

Re: Re: Hub Change
By: Black Panther to deon on Mon Oct 26 2020 11:01 pm

Would I forward like -p 24553:24554? That doesn't seem right. I do
have -p 24560:24554 -p 24553:24553 in the command line now.

No, binkd doesnt understand TLS.

The container has an NGINX server in it, listening on 24553 - and will "forward" to localhost 24554.

deon, can you enable TLS 1.3 for nginx in the the docker image? it's just one config line.

I only get a TLS 1.2 session with 21:4/100 and 21:3/100

SSL-Session:
Protocol : TLSv1.2

(and no working connection with 21:1/100 and 21:2/100)

---
* Origin: (21:3/102)

Re: Hub Change
By: Oli to deon on Tue Oct 27 2020 12:58 pm

deon, can you enable TLS 1.3 for nginx in the the docker image? it's just one config line.
I only get a TLS 1.2 session with 21:4/100 and 21:3/100

Can you test it with 3/100 - should be enabled now.

If it works, I'll commit the change to the image and publish it.

...ëîåï

... Half of conversation is listening.
--- SBBSecho 3.11-Linux
* Origin: I'm playing with ANSI+videotex - wanna play too? (21:2/116)

deon wrote (2020-10-28):

Re: Hub Change
By: Oli to deon on Tue Oct 27 2020 12:58 pm

deon, can you enable TLS 1.3 for nginx in the the docker image?
it's just one config line. I only get a TLS 1.2 session with
21:4/100 and 21:3/100

Can you test it with 3/100 - should be enabled now.

If it works, I'll commit the change to the image and publish it.

No, not yet.

openssl s_client -tls1_3 -connect net3.fsxnet.nz:24553
CONNECTED(00000003)
1995890704:error:1409442E:SSL routines:ssl3_read_bytes:tlsv1 alert protocol version:../ssl/record/rec_layer_s3.c:1544:SSL alert number 70
---
no peer certificate available
---
No client certificate CA names sent
---
SSL handshake has read 7 bytes and written 238 bytes
Verification: OK
---
New, (NONE), Cipher is (NONE)
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
Early data was not sent
Verify return code: 0 (ok)
---

---
* Origin: (21:3/102)

Re: Hub Change
By: Oli to deon on Wed Oct 28 2020 09:14 am

Can you test it with 3/100 - should be enabled now.

No, not yet.
openssl s_client -tls1_3 -connect net3.fsxnet.nz:24553

OK, think I got it now...

...ëîåï

... Vulcans worship peace above all. McCoy, Return to Tomorrow, stardate 4768. --- SBBSecho 3.11-Linux
* Origin: I'm playing with ANSI+videotex - wanna play too? (21:2/116)

deon wrote (2020-10-28):

Re: Hub Change
By: Oli to deon on Wed Oct 28 2020 09:14 am

Can you test it with 3/100 - should be enabled now.

No, not yet.
openssl s_client -tls1_3 -connect net3.fsxnet.nz:24553

OK, think I got it now...

yes! :)

---
* Origin: (21:3/102)