Hi,
I can confirm your problem.
We are running an usenet news server, where we allow users to connect
directly and without any form of authentication and encryption from
within our network, but force users to connect via SSL and
authenticate themselves from the outside.
Mozilla will hang when posting messages via an SSL-encrypted link.
It doesn't happen always. It appears to happen when writing the message
takes a little while. When the message is written and sent quickly,
mozilla doesn't hang.
We are running inn-STABLE-20041230, but the problem was there with
earlier versions also.
Regards,
Toon.
--
"Debugging is twice as hard as writing the code in the first place.
Therefore, if you write the code as cleverly as possible, you are,
by definition, not smart enough to debug it." - Brian W. Kernighan
I can confirm this Problem with INN 2.4.2 and slrn. If I connect and
try to post, slrn just hangs until I kill it. At the moment I use
stunnel as a workaround(posting works fine) but I would like to see
that problem fixed, too. IP-Based authentication does not work with
stunnel because everyone connects to nnrpd from localhost.
Regards,
Sebastian
--
GPG Key-ID: 0x76B79F20 (0x1B6034F476B79F20)
Wehret den Anfaengen: http://odem.org/informationsfreiheit/
Thunder rolled. ... It rolled a six.
--Terry Pratchett, Guards! Guards!
Would you be willing to post what you have in your readers.conf? I am
trying to set up in exactly the same way.
but I have been unsuccessful so far, because the connection times out.
For me though, it times out when I try to get a list of messages in a
group after I have subscribed. I can't get so far as trying to post a
message.
I wasn't aware that mozilla was having a problem with secure connections
to inn 2.4.1. I will have to try with another type of client and see if
I can make any progress that way.
Bill Tangren
Here you go:
auth "radius" {
hosts: "*"
auth: "radius -f /usr/local/news/etc/radius.conf"
require_ssl: true
}
access "radius_users" {
users: "*"
newsgroups: "*"
newsmaster: "newsm...@hobby.nl"
localtime: true
clienttimeout: "1800"
}
access "failed_users" {
reject_with: "You need to be correctly authenticated to use this server from outside Hobbynet en HCCnet."
users: "<FAIL>@*"
newsmaster: "newsm...@hobby.nl"
localtime: true