winsslwrap v1.x ---- by hoe@dle.sk 2001/2002, http://pftp.suxx.sk

This is v1.x release of WinSSLWrap. This util is kinda like stunnel
(www.stunnel.org) but it has GUI and supports secure ftp protocol
with SSL, at this moment only control connection is encrypted.
You can also create basic redirector with this util. Also secure redirector
with ssl input or output or both. This can be for example used with stunnel
on unix boxes to create secure channels to read mail, or telnet.
Or for example to create secure channel to connect to SSL IRC server (linknet
should support this soon too).

How to create simple insecure redir channel :
click on Services button and than add new service by clicking on Add button.
select service type to tunnel, leave listen host empty (will let you connect
to any of yours computer net devices) and set listen port, then set remote host
and port. leave both ssl check boxes unchecked. enable this service and click
on OK button. if you now connect to local port which you set as listen port
you will be redirected to remotehost to port which you set as remote. if you
check those ssl check boxes then listen connection and/or remote connection
will be crypted with ssl.

How to create simple ftp proxy and what it does :
click on Services button and than add new service by clicking on Add button.
select service type ftp proxy, and set listen host (for example to localhost)
and port (for example 666), set ftp server type to AUTH TLS (this is default
configuration in glftpd-TLS), and uncheck rejecting (will let you connect also
to servers that doesnt support SSL), now launch your ftp client (for example 
flashfxp), set proxy type to some like user@host (or user@host:port) and
select hostname to localhost and port to 666 (if you set this in winsslwrap)
select no username or password, now you can try to connect to some ftp server
with this proxy, check winsslwrap log for whats happening,
if you get something like :
[proxy1] Listening on hoe (127.0.0.1), port 666
[proxy1] Connection from 127.0.0.1, port 1764
[proxy1] FTP Connecting to 192.168.0.1, port 21
[proxy1] FTP Connection to 192.168.0.1, port 21 failed to change to SSL...
this means that ftp server you are connecting to doesnt support ssl, so your
session is not more secure then before...
if you dont want to be able to connect to these servers check rejecting box
in services window

with ssl supporting server you will get something like this :
[proxy1] Connection from 127.0.0.1, port 1768
[proxy1] FTP Connecting to 192.168.0.5, port 2778
[proxy1] FTP Connection to 192.168.0.5, port 2778 changed to SSL successfully...
this means that your control connection is encrypted


this is pretty much all it can do so far but there is much more to come :)
the configuration is stored in wrap.ini

sorry for such lame docs but i hope this explains the basics, try the program
and you will find out that its not really complicated :)
if you have questions or something mail hoe@dle.sk

This product includes cryptographic software written by Eric Young
(eay@cryptsoft.com)

HoE

