Hello All,

Anyone for binkp, or binkps over TLS?

Ttyl :-),
Al

--- GoldED+/LNX 1.1.5-b20180707
* Origin: The Rusty MailBox - Penticton, BC Canada (1:153/757)

Hello Alan!

22 Nov 19 16:08, you wrote to all:

Anyone for binkp, or binkps over TLS?

I believe that Alexey Vissarionov is working on something like this. It might be worth dropping him a netmail about it.

Andrew

--- GoldED+/LNX 1.1.5-b20180707
* Origin: Phoenix BBS * phoenix.bnbbbs.net (1:320/219)

Re: Tap.. tap.. tap.. is this thing on?
By: Alan Ianson to All on Fri Nov 22 2019 04:08 pm

Anyone for binkp, or binkps over TLS?

I'm happy to spin up a test system and help get this going...
...ëîåã

... A woman drove me to drink, and I never had the courtesy to thank her.
--- SBBSecho 3.10-Linux
* Origin: I'm playing with ANSI+videotex - wanna play too? (3:633/509)

Hello Andrew,

Anyone for binkp, or binkps over TLS?

I believe that Alexey Vissarionov is working on something like this.
It might be worth dropping him a netmail about it.

That's a good idea. If I don't see him post something about that I'll send a netmail his way.

Ttyl :-),
Al

--- GoldED+/LNX 1.1.5-b20180707
* Origin: The Rusty MailBox - Penticton, BC Canada (1:153/757)

Hello Deon,

Anyone for binkp, or binkps over TLS?

I'm happy to spin up a test system and help get this going...

I'm in that where to start spot again. We'll have to figure out how to start and then put a round robin of sorts together.

Ttyl :-),
Al

--- GoldED+/LNX 1.1.5-b20180707
* Origin: The Rusty MailBox - Penticton, BC Canada (1:153/757)

Hello Deon,

Anyone for binkp, or binkps over TLS?

I'm happy to spin up a test system and help get this going...

Did you see Rob's post in FIDONEWS?

I have Equinox BBS listing with the TLS option on port 24555. Feel free to try if you can. I'm not sure how to run binkd in TLS mode to other nodes, and I'm not sure I have all the needed bits to receive securely. But it's a start.

Equinox BBS
1:153/757.2
equinoxbbs.ddns.net

Feel free (anyone) to try a connect there and if you can report success or failure.

Ttyl :-),
Al

--- GoldED+/LNX 1.1.5-b20180707
* Origin: The Rusty MailBox - Penticton, BC Canada (1:153/757)

Re: Tap.. tap.. tap.. is this thing on?
By: Alan Ianson to Deon George on Mon Dec 09 2019 05:08 pm

Did you see Rob's post in FIDONEWS?

I just saw it.

I'll set my side up as well. But I think binkit needs some extra work before I can initiate outbound connections.

Does anybody have anything that can initiate connections? What do you use? ...ëîåã

... There are some things worth dying for. Kirk, Errand of Mercy, stardate 320 --- SBBSecho 3.10-Linux
* Origin: I'm playing with ANSI+videotex - wanna play too? (3:633/509)

Hi! Deon,

On 10 Dec 19 13:17, you wrote to Alan Ianson:

Does anybody have anything that can initiate connections? What do you
use?

This might...

touch [/path/to/outbound/zone1]/009902f5.pnt/00000002.clo

There's 99 ways to skin these things. I've never had to do it that way, ever. (Watch me get it wrong.) Brush up on your 'Binkley Outbound Theory'. Er, ask Ian. :)

Cheers,
Paul.

... Horn busted, watch for finger...
--- GoldED+/LNX 1.1.5-b20130515
* Origin: Quinn's Rock - Live from Paul's Xubuntu desktop! (3:640/1384)

Re: Tap.. tap.. tap.. is this thing on?
By: Paul Quinn to Deon George on Tue Dec 10 2019 03:17 pm

This might...
touch [/path/to/outbound/zone1]/009902f5.pnt/00000002.clo

Yeah, I was actually talking about initiating an secure binkp session. I didnt think there was anything that was able to do it?
...ëîåã

... The best number for a dinner party is 2. Myself and a damn good headwaite --- SBBSecho 3.10-Linux
* Origin: I'm playing with ANSI+videotex - wanna play too? (3:633/509)

Hi! Deon,

On 10 Dec 19 19:03, you wrote to me:

Yeah, I was actually talking about initiating an secure binkp session.
I didnt think there was anything that was able to do it?

Well, I have a kewl 'sendfile.sh' bash script originally from the MFREQ package. Can I send that to you? You can then send any -real- test files you like...

Cheers,
Paul.

... I don't speak for anybody but myself - that's enough trouble.
--- GoldED+/LNX 1.1.5-b20130515
* Origin: Quinn's Rock - Live from Paul's Xubuntu desktop! (3:640/1384)

Hi! Deon,

On 10 Dec 19 19:10, I wrote to you:

Well, I have a kewl 'sendfile.sh' bash script originally from the
MFREQ package. Can I send that to you? You can then send any -real-
test files you like...

I'm not getting any feedback here... Mmm... came to mind this AM to use a 'crash' filebox for Ian's test site.

Want more?

Cheers,
Paul.

... Blind people don't bungee jump; it scares the dog too much.
--- GoldED+/LNX 1.1.5-b20130515
* Origin: Quinn's Rock - Live from Paul's Xubuntu desktop! (3:640/1384)

Hi! Alan,

On 10 Dec 19 13:47, you wrote to me:

I got lost at sendfile.sh from the MFREQ package or I'd give you some feedback.. :)

There is is a FREQ server package for Linux called 'Mfreq', by Markus Reschke.
In it are a couple of bonus BASH scripts that he threw in just for the hell of it, called: sendfile.sh & frequest.sh to send files or make FREQ requests to send via your binkD job. In any case either script might be used to start-off a binkD session. They need fine-tuning to your local Binkley directory structure. Not hard; I did it!

The guy was just shy of genius level (he also wrote an IP address extraction tool from a FTN nodelist, in BASH!). If you want Mfreq just FREQ 'mfreq' from here, for the last version. Zone 2 let him go without a fight, when he got slightly pissed-off at something minor.

Yes.. :) We are testing the ability to use the binkp protocol in a
secure way. Any help, feedback or direction you can provide is
welcome.

My Idea of a secure doover is covering the keyboard with my off-hand while I peek & poke at the ivories with t'other. :)

Do you think that would be a good thing?

The all-time best would be simply a 'crash' filebox.

Cheers,
Paul.

... "QUANDO OMNI FLUNKUS MORITATI" (when all else fails, play dead).
--- GoldED+/LNX 1.1.5-b20130515
* Origin: Quinn's Rock - Live from Paul's Xubuntu desktop! (3:640/1384)

Paul,

Zone 2 let him go without
a fight, when he got slightly pissed-off at something minor.

I went searching back and didn't find a cross word before he pulled-out.

As far as I can tell he just left...

He posted a message in German ...

***************************************************************************** Das kommt jetzt vielleicht etwas plötzlich, aber mir ist schon länger der Spass am Fido abhanden gekommen. Und was in letzter Zeit so alles passiert ist, war auch nicht gerade motivierend. Daher werde ich meine Nodenummer zurückgeben. Lange Worte spare ich mir. Denn man läuft sich immer wieder über den Weg. ;) *****************************************************************************

Any interpretation is possible.

\%/@rd

--- D'Bridge 3.99
* Origin: Do not meddle in the affairs of wizards (2:292/854)

Hi! Ward,

On 11 Dec 19 09:22, you wrote to me:

Zone 2 let him go without a fight, when he got slightly pissed-off at
something minor.

I went searching back and didn't find a cross word before he
pulled-out. As far as I can tell he just left...

Not a problem. "He'll be back...", is still a possibility.

Cheers,
Paul.

... It's only a hobby ... only a hobby ... only a hobby ... only a hobby..
--- GoldED+/LNX 1.1.5-b20130515
* Origin: Quinn's Rock - Live from Paul's Xubuntu desktop! (3:640/1384)

Hello Paul,

There is is a FREQ server package for Linux called 'Mfreq', by Markus Reschke. In it are a couple of bonus BASH scripts that he threw in
just for the hell of it, called: sendfile.sh & frequest.sh to send
files or make FREQ requests to send via your binkD job. In any case either script might be used to start-off a binkD session. They need fine-tuning to your local Binkley directory structure. Not hard; I
did it!

Those scripts sound good. Whenever I want to send a file or reuest one, I have to figure out the hexadecimal of it all.. Oops, I didn't mean to send that there.. ;)

The guy was just shy of genius level (he also wrote an IP address extraction tool from a FTN nodelist, in BASH!). If you want Mfreq
just FREQ 'mfreq' from here, for the last version. Zone 2 let him go without a fight, when he got slightly pissed-off at something minor.

I remember when he left although I don't know what was troubling him. I do have
a version of mfreq here, been meaning to set that up. I'll freq yours to make sure I am up to date.

Yes.. :) We are testing the ability to use the binkp protocol in
a secure way. Any help, feedback or direction you can provide is
welcome.

My Idea of a secure doover is covering the keyboard with my off-hand
while I peek & poke at the ivories with t'other. :)

At least your keyboard is secure.. ;)

Do you think that would be a good thing?

The all-time best would be simply a 'crash' filebox.

Everything is on crash here except my point and one other node that has become unresponsive. I'm hoping that node will come back to life but time will tell.

Ttyl :-),
Al

--- GoldED+/LNX 1.1.5-b20180707
* Origin: The Rusty MailBox - Penticton, BC Canada (1:153/757)

Hello Deon,

I'll set my side up as well. But I think binkit needs some extra work before I can initiate outbound connections.

Does anybody have anything that can initiate connections? What do you
use?

Rob has made changes and now we can also poll out over TLS where is supported. Once I know what node you have TLS setup on I can send you a netmail and we'll see what happens.

I have sent and received netmail over TLS with binkit.. so I think it's on.

Ttyl :-),
Al

--- GoldED+/LNX 1.1.5-b20180707
* Origin: The Rusty MailBox - Penticton, BC Canada (1:153/757)

Re: Tap.. tap.. tap.. is this thing on?
By: Alan Ianson to Deon George on Mon Dec 09 2019 05:08 pm

Anyone for binkp, or binkps over TLS?

I have Equinox BBS listing with the TLS option on port 24555. Feel free

to

Since I'm using 24555 for another BINKP service, I'm settling with 24543 for BINKPS - the "43" is kinda like the webs secure port :)

Just updating SBBS, now, and then I should be able to test this as well. ...deon


... War will cease when men refuse to fight.
--- SBBSecho 3.10-Linux
* Origin: I'm playing with ANSI+videotex - wanna play too? (3:633/509)

Re: Tap.. tap.. tap.. is this thing on?
By: Alan Ianson to Deon George on Wed Dec 11 2019 03:06 pm

Rob has made changes and now we can also poll out over TLS where is supported. Once I know what node you have TLS setup on I can send you a netmail and we'll see what happens.

Ha, I was just typing when your message came in.

I should be good to go in about 30mins (when my compile completes).
...deon


... Database administrators do it with their relations
--- SBBSecho 3.10-Linux
* Origin: I'm playing with ANSI+videotex - wanna play too? (3:633/509)

Hi! Alan,

On 11 Dec 19 14:58, you wrote to me:

Those scripts sound good. Whenever I want to send a file or reuest
one, I have to figure out the hexadecimal of it all.. Oops, I didn't
mean to send that there.. ;)

Nope, the scripts do the conversion from FTN-->outbound(hex). The only need is to fine-tune the output directory structure addressing, since Markus used a weird variation.

Cheers,
Paul.

... Confucious say: Baseball wrong. Man with 4 balls cannot walk.
--- GoldED+/LNX 1.1.5-b20130515
* Origin: Quinn's Rock - Live from Paul's Xubuntu desktop! (3:640/1384)

Re: Tap.. tap.. tap.. is this thing on?
By: Deon George to Alan Ianson on Thu Dec 12 2019 10:19 am

Just updating SBBS, now, and then I should be able to test this as well.

OK, SBBS up - I'm sending a netmail now :)
...deon


... Beware of all enterprises requiring new clothes.
--- SBBSecho 3.10-Linux
* Origin: I'm playing with ANSI+videotex - wanna play too? (3:633/509)

Hello Deon,

Just updating SBBS, now, and then I should be able to test this
as well.

OK, SBBS up - I'm sending a netmail now :)
...deon

K, I'll keep an eye out. 1:163/757.2, the hostname is equinoxbbs.ddns.net and the port is 24555.

Ttyl :-),
Al

--- GoldED+/LNX 1.1.5-b20180707
* Origin: The Rusty MailBox - Penticton, BC Canada (1:153/757)

Re: Tap.. tap.. tap.. is this thing on?
By: Deon George to Alan Ianson on Thu Dec 12 2019 10:33 am

OK, SBBS up - I'm sending a netmail now :)

I think it connected ?

Connecting to 1:153/757.2@fidonet at equinoxbbs.ddns.net:24555
Connection to equinoxbbs.ddns.net:24555 successful
...
Sent M_ADR command
Remote host closed socket
Unlocking ../fido/outbound.001/009902f5.pnt/00000002.bsy. /opt/sbbs/exec/binkit.js executed in 1.80 seconds

But it didnt send the packet? :(
...deon


... Diets are for those who are thick and tired of it.
--- SBBSecho 3.10-Linux
* Origin: I'm playing with ANSI+videotex - wanna play too? (3:633/509)

Hi! Deon,

On 12 Dec 19 10:33, you wrote to Alan Ianson:

Just updating SBBS, now, and then I should be able to test this
as well.

OK, SBBS up - I'm sending a netmail now :)

Ah, sending mail. What a novel approach! ;)

Cheers,
Paul.

... Ever find yourself reading taglines & skipping messages?
--- GoldED+/LNX 1.1.5-b20130515
* Origin: Quinn's Rock - Live from Paul's Xubuntu desktop! (3:640/1384)

Hello Deon,

OK, SBBS up - I'm sending a netmail now :)

I think it connected ?

Connecting to 1:153/757.2@fidonet at equinoxbbs.ddns.net:24555
Connection to equinoxbbs.ddns.net:24555 successful
...
Sent M_ADR command
Remote host closed socket
Unlocking ../fido/outbound.001/009902f5.pnt/00000002.bsy. /opt/sbbs/exec/binkit.js executed in 1.80 seconds

But it didnt send the packet? :(

You may need to add my node in echocfg and then add BinkpTLS=true to my nodes section in sbbsecho.ini if you haven't already done that.

I am just adding your info there now and will try sending you a netmail in a few minutes..

Ttyl :-),
Al

--- GoldED+/LNX 1.1.5-b20180707
* Origin: The Rusty MailBox - Penticton, BC Canada (1:153/757)

Hello Paul,

Nope, the scripts do the conversion from FTN-->outbound(hex).

Good, that's the part that always gives me trouble.

The only need is to fine-tune the output directory structure
addressing, since Markus used a weird variation.

OK, if I can't figure out what he's done I may need to ping you.. :)

Ttyl :-),
Al

--- GoldED+/LNX 1.1.5-b20180707
* Origin: The Rusty MailBox - Penticton, BC Canada (1:153/757)

Hello Deon,

I think it connected ?

Yes.

Connecting to 1:153/757.2@fidonet at equinoxbbs.ddns.net:24555
Connection to equinoxbbs.ddns.net:24555 successful
...
Sent M_ADR command
Remote host closed socket
Unlocking ../fido/outbound.001/009902f5.pnt/00000002.bsy. /opt/sbbs/exec/binkit.js executed in 1.80 seconds

But it didnt send the packet? :(

I think once you have BinkpTLS=true it'll work.

I just sent you netmail to 3:633/509 to chinwag.leenooks.net on port 24543 but am unable to connect. Do you have a [BINKPS] section in your services.ini?

Ttyl :-),
Al

--- GoldED+/LNX 1.1.5-b20180707
* Origin: The Rusty MailBox - Penticton, BC Canada (1:153/757)

Re: Tap.. tap.. tap.. is this thing on?
By: Alan Ianson to Deon George on Wed Dec 11 2019 04:04 pm

You may need to add my node in echocfg and then add BinkpTLS=true to my nodes section in sbbsecho.ini if you haven't already done that.

Yeah, I did all that...

I am just adding your info there now and will try sending you a netmail

in

a few minutes..

Ok, I'm watching the logs ...
...deon


... An unbiased opinion is always absolutely valueless.
--- SBBSecho 3.10-Linux
* Origin: I'm playing with ANSI+videotex - wanna play too? (3:633/509)

Re: Tap.. tap.. tap.. is this thing on?
By: Alan Ianson to Deon George on Wed Dec 11 2019 04:04 pm

Connecting to 1:153/757.2@fidonet at equinoxbbs.ddns.net:24555
Connection to equinoxbbs.ddns.net:24555 successful
...
Sent M_ADR command
Remote host closed socket
Unlocking ../fido/outbound.001/009902f5.pnt/00000002.bsy.
/opt/sbbs/exec/binkit.js executed in 1.80 seconds
But it didnt send the packet? :(

I actually think its not working.

I'm thinking your side closed me - and didnt accept the transfer.

Although now that its in my outbound, I dont think its doing TLS with the normal round of BINKOUT:

12/12 11:31:36 evnt BINKOUT Attempting callout for 1:153/757.2@fidonet, file: ../fido/outbound.001/009902f5.pnt/00000002.cut
12/12 11:31:36 evnt BINKOUT JSBinkP/1.122 callout to 1:153/757.2@fidonet started
12/12 11:31:36 evnt BINKOUT Connecting to 1:153/757.2@fidonet at equinoxbbs.ddns.net:24555
12/12 11:31:40 evnt BINKOUT Error in recv() of packet data
...deon


... An optimist is a man who starts a crossword puzzle with a fountain pen.
--- SBBSecho 3.10-Linux
* Origin: I'm playing with ANSI+videotex - wanna play too? (3:633/509)

Re: Tap.. tap.. tap.. is this thing on?
By: Alan Ianson to Deon George on Wed Dec 11 2019 04:15 pm

I just sent you netmail to 3:633/509 to chinwag.leenooks.net on port

24543

but am unable to connect. Do you have a [BINKPS] section in your services.ini?

I do - but a typo in the firewall rule :) (Fixed now).

BTW: You can use alterant.leenooks.net (chinwag works too - but I'll probably delete that oneday...)
...deon


... Hindsight is an exact science.
--- SBBSecho 3.10-Linux
* Origin: I'm playing with ANSI+videotex - wanna play too? (3:633/509)

Re: Tap.. tap.. tap.. is this thing on?
By: Alan Ianson to Deon George on Wed Dec 11 2019 04:15 pm

I just sent you netmail to 3:633/509 to chinwag.leenooks.net on port

24543

but am unable to connect. Do you have a [BINKPS] section in your services.ini?

So I got your message, and have replied.

But cannot send it to you? Seems you can only pickup?

<looking at sbbsecho.ini>

I see my TLS config item has gone - maybe it dropped it when I re-used sbbsecho....

I'll put it back and try again.

<trying>

Got it - that was it. BinkpTLS dropped out.
...deon


... I like a man who grins when he fights.
--- SBBSecho 3.10-Linux
* Origin: I'm playing with ANSI+videotex - wanna play too? (3:633/509)

Hello Deon,

I see my TLS config item has gone - maybe it dropped it when I re-used sbbsecho....

I'll put it back and try again.

Yep, I don't think echocfg knows about that keyword yet, so if you make any changes in echocfg you'll need to put that back in.. for now.

Ttyl :-),
Al

--- GoldED+/LNX 1.1.5-b20180707
* Origin: The Rusty MailBox - Penticton, BC Canada (1:153/757)

Hi Alan.

11 Dec 19 16:15, you wrote to Deon George:

I think once you have BinkpTLS=true it'll work.

I just sent you netmail to 3:633/509 to chinwag.leenooks.net on port

24543 but

am unable to connect. Do you have a [BINKPS] section in your

services.ini?

I can connect you with binkd/tls:

+ 13 Dec 21:37:52 [13300] call to 1:153/757.2@fidonet
+ 13 Dec 21:37:52 [13300] External command 'openssl s_client -quiet -alpn binkp -connect equinoxbbs.ddns.net:24555' started, pid 13301
13 Dec 21:37:52 [13300] connected
+ 13 Dec 21:37:52 [13300] outgoing session with p2.f757.n153.z1.binkp.net:binkp
- 13 Dec 21:37:53 [13300] OPT CRAM-MD5-df7f4d340adf2ad286ae18c610385922 CRYPT
+ 13 Dec 21:37:53 [13300] Remote requests MD mode
+ 13 Dec 21:37:53 [13300] Remote requests CRYPT mode
- 13 Dec 21:37:53 [13300] SYS Equinox BBS
- 13 Dec 21:37:53 [13300] ZYZ Alan Ianson
- 13 Dec 21:37:53 [13300] LOC Penticton, BC Canada
- 13 Dec 21:37:53 [13300] NDL 115200,TCP,BINKP
- 13 Dec 21:37:53 [13300] TIME Fri Dec 13 2019 11:37:53 GMT-0800 (PST)
- 13 Dec 21:37:53 [13300] VER BinkIT/2.28,JSBinkP/1.122,sbbs3.17c/Linux binkp/1.1
+ 13 Dec 21:37:53 [13300] addr: 1:153/757.2@fidonet
+ 13 Dec 21:37:53 [13300] addr: 21:4/106.1@fsxnet (n/a or busy)
+ 13 Dec 21:37:53 [13300] done (to 1:153/757.2@fidonet, OK, S/R: 0/0 (0/0 bytes))
13 Dec 21:37:53 [13300] session closed, quitting...

Please do read the BINKD echo. :)

'Tommi

---
* Origin: binkps://news.fidonet.fi:24567 (2:221/6)

Hello Tommi,

Please do read the BINKD echo. :)

I have been reading with interest.. :)

I have sent and recieved netmail over TLS enabled binkp sessions with 1:103/705 and 3:633/509.

I also received your netmail and am about to reply but I need to do some routing setup at 153/757.2 before I can reply but I'll being doing that when I get a few minutes.

I think that'll be easy enough to do.. ;)

Once I have that sorted I'll try connecting to your node over TLS with binkd. I think it would be a good thing if we could get 153/757 <-> 221/6 working over TLS but I haven't sorted those details in my head yet or how to get a cert to binkd. I do have a cert for trmb.ca I'm just not sure how to apply it to binkd.

More to come.. :)

Ttyl :-),
Al

--- GoldED+/LNX 1.1.5-b20180707
* Origin: The Rusty MailBox - Penticton, BC Canada (1:153/757)