Results 1 to 1 of 1

Thread: Problems encrypting swat

Thread Tools
Display
- Switch to Linear Mode
- Switch to Hybrid Mode
- Threaded Mode

Threaded View

10-18-2010 11:04 AM #1
onewaydave

View Profile

View Forum Posts

Private Message
Newbie

Join Date

Sep 2009

Posts

1
Problems encrypting swat

I’m following LHN howto=Chpt 10 with fc13 and everything worked up to the point that I could browse to swat on http. Then I started "Encrypting SWAT".
http://www.linuxhomenetworking.com/w…nux,_and_Samba
useradd stunnel
make stunnel.pem (had to change to the directory /etc/pki/tls/certs for this to work)
changed the permissions as directed
/etc/stunnel/stunnel.conf changed the location of the key and cert file (which on my system /etc/pki/tls/certs/stunnel.pem).
/etc/xinetd.d/swat-stunnel to match the example and ensured disable was off in swat-stunnel and on in swat.
Added "swat-stunnel 902/tcp …" to /etc/services.
smb nmb xinetd are running and started stunnel
firewall is aware of samba
port 901 and 902 are set for tcp (my terminology may be off).
"netstat -an -t |grep 901" shows 901 listening but no response for 902 (I think herein lies my problem)
"netstat -an" alone shows neither 901 or 902.
Problems;
1. …xinetd.d)# netstat -an does not show 0.0.0.0:901 or 127.0.0.1:902 as listening ( it does on another network set up the same???)
2. Using a browser for swat I cannot get to swat but get a "Problem loading; The connection to the server was reset while the page was loading" page whether I use http: or https: and whether I use localhost or 127.0.0.1 (both of which are in the "only from" line in the configuration files).
3. When I reboot and come to the login page, stunnel is listed as a user, is this good for security? Doesn’t seem so to me and I’m wondering how to get it to not show there.

I returned to the tutorial and undid the encryption portion of swat as follows:
set swat to disable = no and swat-stunnel to disable = yes
changed /etc/services #swat-stunnel…
changed /etc/rc.local #/usr/bin/stunnel
chkconfig smb swat xinetd on
pkill stunnel
service smb nmb xinetd swat restart
And everrything works fine. I can access swat from a browser using http://localhost:901
So this tells me that I have something configured wrong in the swat-stunnel process. I have been through the tutorial 4-5 times and rechecked my work and cannot find the problem. I have googled, searched this and several other fora, been to samba and read many tutorials on samba and swat but cannot figure where I’m off. Anybody have experience or suggestions?
Reply With Quote

« Previous Thread | Next Thread »

Similar Threads

SWAT

By cherokee in forum Linux – Hardware, Networking & Security

Replies: 4
Last Post: 05-13-2004, 03:29 AM
Samba SWAT problems

By cheezetrix in forum Linux – Software, Applications & Programming

Replies: 2
Last Post: 05-01-2004, 04:20 PM
swat doesn’t start

By harvm in forum Linux – General Topics

Replies: 10
Last Post: 09-19-2002, 02:42 AM
SWAT in RH 7.3

By xgtr in forum Linux – Hardware, Networking & Security

Replies: 2
Last Post: 06-01-2002, 07:04 AM
SWAT probs

By Kernel_Killer in forum Linux – Hardware, Networking & Security

Replies: 3
Last Post: 05-01-2002, 06:39 PM

Bookmarks

Bookmarks

Digg
del.icio.us
StumbleUpon
Google

Posting Permissions

You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

All times are GMT. The time now is 01:23 AM.

Powered by vBulletin™
Copyright © 2011 vBulletin Solutions, Inc. All rights reserved.