Tools Exploits Advisories Articles Home 

Tools  ->  Dragonfly@JUMPERZ.NET


Overview


Dragonfly@JUMPERZ.NET is a reverse proxy server that acts as "SSL to TCP".

Dragonfly@JUMPERZ.NET receives encrypted data from SSL client and send the decrypted data to a TCP server ( like HTTP, POP3, SMTP ). It can allow you to secure non-SSL aware servers.

For example, Dragonfly@JUMPERZ.NET enabled you to operate a secure web site (HTTPS) with a normal configured web server.


Features


- Published as open source code
- Witten in pure Java for cross-platform portability and buffer overflow free
- Other SSL library ( like OpenSSL ) is not needed.



Download


Download those two files.

 - jumperz_net_091.jar
    ( Java class files and source codes )

 - dragonfly.conf
    ( Configuration file example )



Installation


Dragonfly@JUMPERZ.NET depends on Sun's JRE v1.4. The runtime environment must be installed. JRE is available at http://java.sun.com/.

After JRE has been installed, set CLASSPATH to the jumperz_net JAR file( jumperz_net*.jar ). If there is a previous version of jumperz_net JAR file, remove that.


Configuration


Before running Dragonfly@JUMPERZ.NET, you should modify a configuration file with your text editor.
Configuration file 'dragonfly.conf' looks like this:

host=www.jumperz.net
port=443
targetHost=www.jumperz.net
targetPort=80
privateKeyFileName=/usr/local/dragonfly/ssl/key.pkcs8.der
certificateFileName=/usr/local/dragonfly/ssl/cert.pem
algorithm=RSA
logFileName=/var/log/dragonfly.log
threadCount=20

'host' is the hostname or IP address of the socket that listens for SSL connection.
'port' is the port of the listening socket.
'targetHost' is the hostname or IP address of the target server that listens for a decrypted connection.
'targetPort' is the port of the target server.
'privateKeyFileName' is the name of a (RSA|DSA) private key file which is needed for SSL. This key must be encoded with PKCS#8 format and the file must be in DER format.
'certificateFileName' is the name of a certificate ( or a certificate chain ) file. This certificate must be in PEM format.
'algorithm' is the algorithm of the private key. Only RSA and DSA are supported.
'logFileName' is the name of the access log file.
'threadCount' is the count of working threads. This value should be more than or equal to 20.



Usage


To run Dragonfly@JUMPERZ.NET, type:
>java net.jumperz.app.MDragonfly.MDragonfly CONFIGURE_FILE_NAME

Dragonfly@JUMPERZ.NET consumes large amount of memory. So it is recommended that you run java with '-Xmx' option like this:
>java -Xmx10M net.jumperz.app.MDragonfly.MDragonfly CONFIGURE_FILE_NAME



Supported cipher suites


SSL_RSA_WITH_RC4_128_SHA
SSL_RSA_WITH_RC4_128_MD5
SSL_RSA_WITH_DES_CBC_SHA
SSL_RSA_WITH_3DES_EDE_CBC_SHA
SSL_DHE_DSS_WITH_DES_CBC_SHA
SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA
SSL_RSA_EXPORT_WITH_RC4_40_MD5
SSL_DHE_DSS_EXPORT_WITH_DES40_CBC_SHA



Security


Dragonfly@JUMPERZ.NET does not support any IP based authentication. You should use firewall software like ipchains, iptables, Zone Alarm, etc, in order to prevent being connected by a malicious person.



>> Tools:
Doorman Eclipse Plugin
Amberjack@JUMPERZ.NET
Guardian@JUMPERZ.NET


>> Latest files:
MonjaDB


>> Contact:
Kanatoko
twitter: @kinyuka


Copyrightę 1998-2012 JUMPERZ.NET All Rights Reserved.