[stunnel-users] User-agent string

Josh Rabinowitz freshjewbagel at gmail.com
Mon Feb 22 15:39:59 CET 2016


Is there a way to force stunnel to use a specific user-agent string? I
have mulled through documentation, this list, and other places with no
results.

The reason I ask, is the proxy I am going through is super strict,
well not really. It will accept 'lynx' as a user-agent (among others),
but it needs something. I cannot figure out how to tell stunnel to use
something like this. 5.30 on both ends, here is debug 7 from the
client (IPs changed for privacy) after a config reload and ssh
attempt:

2016.02.22 09:22:08 LOG5[main]: Reading configuration from file stunnel.conf
2016.02.22 09:22:08 LOG5[main]: UTF-8 byte order mark not detected
2016.02.22 09:22:08 LOG5[main]: FIPS mode disabled
2016.02.22 09:22:08 LOG5[main]: Configuration successful
2016.02.22 09:22:15 LOG7[4]: Service [ssh] started
2016.02.22 09:22:15 LOG5[4]: Service [ssh] accepted connection from
127.0.0.1:56690
2016.02.22 09:22:15 LOG6[4]: failover: round-robin, starting at entry #1
2016.02.22 09:22:15 LOG6[4]: s_connect: connecting [webproxyIP]:8080
2016.02.22 09:22:15 LOG7[4]: s_connect: s_poll_wait [webproxyIP]:8080:
waiting 10 seconds
2016.02.22 09:22:15 LOG5[4]: s_connect: connected [webproxyIP]:8080
2016.02.22 09:22:15 LOG5[4]: Service [ssh] connected remote server
from [clientIP]:56691
2016.02.22 09:22:15 LOG7[4]: Remote descriptor (FD=844) initialized
2016.02.22 09:22:15 LOG7[4]:  -> CONNECT [remoteIP]:443 HTTP/1.1
2016.02.22 09:22:15 LOG7[4]:  -> Host: [remoteIP]:443
2016.02.22 09:22:15 LOG7[4]:  ->
2016.02.22 09:22:15 LOG7[4]:  <- HTTP/1.1 403 Forbidden
2016.02.22 09:22:15 LOG3[4]: CONNECT request rejected
2016.02.22 09:22:15 LOG7[4]:  <- Cache-Control: no-cache
2016.02.22 09:22:15 LOG7[4]:  <- Pragma: no-cache
2016.02.22 09:22:15 LOG7[4]:  <- Content-Type: text/html; charset=utf-8
2016.02.22 09:22:15 LOG7[4]:  <- Proxy-Connection: close
2016.02.22 09:22:15 LOG7[4]:  <- Connection: close
2016.02.22 09:22:15 LOG7[4]:  <- Content-Length: 3164
2016.02.22 09:22:15 LOG7[4]:  <-
2016.02.22 09:22:15 LOG5[4]: Connection reset: 0 byte(s) sent to SSL,
0 byte(s) sent to socket
2016.02.22 09:22:15 LOG7[4]: Remote descriptor (FD=844) closed
2016.02.22 09:22:15 LOG7[4]: Local descriptor (FD=1116) closed
2016.02.22 09:22:15 LOG7[4]: Service [ssh] finished (0 left)


client config:

cert = stunnel.pem
client = yes
[ssh]
accept = 127.0.0.1:2222
protocol= connect
connect = [webproxyIP]:8080
protocolHost = [remoteIP]:443
PSKsecrets = psk1.txt
debug = 7

Confirmed working from other hosts outside of this network.

Thanks



More information about the stunnel-users mailing list