Subj : fTelnet
To   : tassiebob
From : Shurato
Date : Thu Oct 17 2024 12:27 pm


 ta> Hi All,

 ta> I've been trying to get fTelnet working in a fully self-hosted
 ta> arrangement. I'm coming unstuck trying to work out how to configure the
 ta> WSS certificate for the proxy.

 ta> The server is using LetsEncrypt certificates and I'm hoping to use that
 ta> same certificate for the fTelnetProxy application, but thus far I've been
 ta> unable to come up with a working configuration.  It looks like .net/mono
 ta> needs a PFX format certificate, which I can generate, but it does't work
 ta> when I do.  I either get "--Error loading cert file", or it throws an
 ta> error in SSL.AuthenticateAsServer.

 ta> The proxy application definitely has permission to read the required
 ta> files.  I've tested my client config against a public proxy and it works
 ta> fine, so I'm 99% sure the problem is with my own proxy config.  The client
 ta> host can reach the proxy on the WSS port (confirmed with telnet).

 ta> Has anyone else out there made this work, using a LetsEncrypt certificate
 ta> (or a conversion from an LE certificate), on Linux?  Ubuntu 22.04.5 LTS if
 ta> it matters.

I use websockify; could never get the ftenetproxy app to work.  You can
install it with pip (it requires python) 'pip install websockify', then I
use the command (this will turn it into mutiple lines, it's just one line):

websockify --cert=c:\apache24\conf\bundle.pem 192.168.0.4:8080 192.168.0.3:24

You can add an --ssl-only to it to only allow secure connections.  The first
ip is the ip address and port number of the socket, the second is the ip
address and port number of the bbs' telnet address.  Use local IPs so that
the secure connection isn't leaked.

--
Shurato, Sysop Shurato's Heavenly Sphere (ssh, telnet, pop3, ftp,nntp,
,wss) (Ports 22,23,110,21,119,8080) (ssh login 'bbs' pass 'shsbbs').


*** THE READER V4.50 [freeware]
---
 * Origin: Shurato's Heavenly Sphere telnet://shsbbs.net (21:2/148)