[inn-workers] Inn 2.4.5: Openssl error when using perl_access function

Jonathan Siegle jsiegle at psu.edu
Tue Sep 16 19:49:11 UTC 2008 

I'll understand if you say this is off topic. I'm guessing it is 
something that I'm not setting in my config.

I'm attempting to use perl_access to dynamically set groups after a user 
logs in using authinfo commands over port 563. I'm starting nnrpd from 
inetd like this:



nntps stream tcp nowait news  /news/bin/nnrpd  nnrpd  -S  -c 
/news/etc/readers2.conf


My readers2.conf looks like this:

auth "any" {
         auth: "auth_krb5"
         perl_access: "/news/bin/filter/ldapfilter2.pl"
}
access "any" {

}



My perl_access script looks very much like the samples.

Here is my %return_hash:

%return_hash = ("newsgroups" => "*,!control,!junk,!private.*,!staff.*",
                  "max_rate" => "10000",
                 "addnntppostinghost" => "true"
);

I'm printing lots and lots of debug to syslog. It sure looks like it 
gets out of my perl code but then it dies.

Server:
Sep 16 15:14:21 tr22n12 news:warn|warning nnrpd[340164]: SERVER perl 
filtering enabled
Sep 16 15:14:21 tr22n12 user:notice ldap_perl: Before the ldap call
Sep 16 15:14:21 tr22n12 user:notice ldap_perl: After the ldap call
Sep 16 15:14:21 tr22n12 user:notice ldap_perl: After the ldap bind call
Sep 16 15:14:21 tr22n12 user:notice ldap_perl: Print the hash 
newsgroups, !control,!junk,!private.*,!staff.*,
Sep 16 15:14:21 tr22n12 user:notice ldap_perl: Print the hash 
addnntppostinghost, true
Sep 16 15:14:21 tr22n12 user:notice ldap_perl: Print the hash max_rate, 
10000
Sep 16 15:14:21 tr22n12 user:notice ldap_perl: Returning...
Sep 16 15:14:21 tr22n12 user:notice tr22n12.aset.psu.edu: 
cider.aset.psu.edu user tstem38
Sep 16 15:14:21 tr22n12 user:notice tr22n12.aset.psu.edu: 
cider.aset.psu.edu can't read: A connection with a remote socket was 
reset by that socket.
Sep 16 15:14:21 tr22n12 user:notice tr22n12.aset.psu.edu: 
cider.aset.psu.edu timeout




Client($ openssl s_client -connect tr22g12.aset.psu.edu:563)

authinfo user tstem38
381 PASS required
authinfo pass myfavoritepassword
281 Ok
20996:error:1408F10B:SSL routines:SSL3_GET_RECORD:wrong version 
number:s3_pkt.c:286:
[cider.aset.psu.edu:/Users/jonathansiegle]

Any clues would be appreciated. For now I've commented out the 
perl_access line and set newsgroups and it works.

thanks,
Jonathan
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3485 bytes
Desc: S/MIME Cryptographic Signature
URL: <https://lists.isc.org/pipermail/inn-workers/attachments/20080916/5e1c2f33/attachment.bin>

More information about the inn-workers mailing list