Just a sample of the Echomail archive
Cooperative anarchy at its finest, still active today. Darkrealms is the Zone 1 Hub.
| BINKD | Support for the Internet BinKD mailer | 8,958 messages |
[ << oldest | < older | list | newer > | newest >> ]
| Message 6,544 of 8,958 |
| Alexey Fayans to Paul Hayton |
| BINKP over TLS |
| 24 Dec 19 01:07:16 |
MSGID: 2:5030/1997@fidonet 5e013d96
REPLY: 3:770/100 8ea34c96
CHRS: CP866 2
TZUTC: 0300
TID: FastEcho 1.46.1 43272
Hello Paul!
On Tue, 24 Dec 2019 at 10:32 +1300, you wrote to me:
AF>> Actually I did it just for fun as a PoC. My system is reachable
AF>> both via binkp and binkps on a single port - 24554. It also uses
AF>> a LetsEncrypt certificate. You can try it.
PH> If you could share the steps I would love to repro this and test also
PH> :)
I have latest version of SSLH (built from source) running with this config:
=== Start of Windows Clipboard ===
verbose: 0;
foreground: true;
inetd: false;
numeric: true;
transparent: false;
timeout: 2;
user: "nobody";
pidfile: "/var/run/sslh.pid";
chroot: "/opt/sslh";
syslog_facility: "auth";
listen:
(
{ host: "0.0.0.0"; port: "24554"; },
{ host: "::"; port: "24554"; }
);
protocols:
(
{ name: "tls"; host: "127.0.0.1"; port: "24553"; },
{ name: "anyprot"; host: "192.168.1.2"; port: "24554"; }
);
on_timeout: "anyprot";
=== End of Windows Clipboard ===
And haproxy listening on 24553 with the following config:
=== Start of Windows Clipboard ===
global
log /dev/log local0
log /dev/log local1 notice
chroot /var/lib/haproxy
stats socket /run/haproxy/admin.sock mode 660 level admin
stats timeout 30s
user haproxy
group haproxy
daemon
# Default SSL material locations
ca-base /etc/ssl/certs
crt-base /etc/ssl/private
ssl-default-bind-ciphers EECDH+AESGCM:EDH+AESGCM
ssl-default-bind-options no-sslv3
# Custom
tune.ssl.default-dh-param 2048
defaults
log global
timeout connect 5000
timeout client 50000
timeout server 50000
listen binkps
mode tcp
bind 127.0.0.1:24553 ssl crt /etc/ssl/certs/bsrealm.net.pem
server binkd 192.168.1.2:24554
=== End of Windows Clipboard ===
Please note that latest SSLH has a bug in on_timeout (on-timeout) config
directive handling (see https://github.com/yrutschle/sslh/issues/253) so maybe
it's a good idea to use version supplied by your distro.
... Music Station BBS | https://bbs.bsrealm.net | telnet://bbs.bsrealm.net
--- GoldED+/W32-MSVC 1.1.5-b20180707
* Origin: Music Station | https://ms.bsrealm.net (2:5030/1997)
SEEN-BY: 1/123 50/109 90/1 103/705 154/10 203/0 221/0 6 227/114 229/101
SEEN-BY: 229/200 354 426 1014 240/5832 249/307 317 280/464 5003 5555
SEEN-BY: 292/854 310/31 342/200 396/45 423/120 451/30 452/166 463/68
SEEN-BY: 469/122 712/848 770/1 2452/250 5000/111 5001/100 5005/49
SEEN-BY: 5015/255 5019/40 42 5020/290 329 715 806 828 846 848 921
SEEN-BY: 5020/1042 1519 2047 2140 4441 12000 5022/128 5023/12 24 5030/1081
SEEN-BY: 5030/1900 1997 5034/13 5053/54 57 58 5054/8 5057/19 5060/900
SEEN-BY: 5064/56 5080/68 102 5083/444
PATH: 5030/1997 5023/24 5020/715 4441 1042 280/5555 464 229/426
|
(c) 1994, bbs@darkrealms.ca