Re: IP stack - ip translation

This is actually for Pocket PC, but too few whiz kids there to answer these
questions.
I'm trying to 'override' the outgoing mail server of the outlook
application.

So if the outgoing server is host1.domain1.com or some ip number, I wish to
make sure it always connects to a specific outgoing server ip number. I'm
guessing this would be best achieved using ip translation (rewriting the
destination ip numbers or so).

It's a bit like those websites at the airport.. when you try to access ANY
webpage, ip or whatever in your webbrowser, it brings up the airport
website, asking you for creditcard info.
Using firewalls like iptables on unix/linux, it's pretty easy to accomplish
this, but I need to implement this myself on the pocket pc.

Also, if I could figure out how to write such Network Helper Layer, (this
would be a 'standard' device driver?) I could consider developing maybe
firewalls or do other fun stuff..

How exactely would I get my application signed? Can I do this myself, or do
I have to pay Microsoft to do this for me or something? I generated my own
SSL certificates for my website, using OpenSSL.. and myself as the
Certifying Authority (CA), but it causes a warning in browsers because I'm
not a known CA. By importing my CA as a trusted CA, the problem is resolved
(it's for personal use anyway).

Do webbrowser and OS use same list of trusted CA's? If my webbrowser works
fine with my own generated certificate, with myself imported as a trusted
CA, could I sign my own apps too with it? How is an application signed?
Where does the certificate end up? In the windows registry or something? Any
hints would be appreciated.

Lisa

"Mark Randall" <markyr@xxxxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:%230d17QZcFHA.1148@xxxxxxxxxxxxxxxxxxxxxxx
> For the entire system this would require a Network Helper Layer, which are
> damned nasty, used in spyware a lot - and wiped out by most spyware tools
> if they arnt signed by MS or trusted authority.
>
> The host you can do by modifiying your hosts table
> (c:/windows/system32/drivers/etc/hosts), as for replacing the Winsock DLL,
> Windows would probably try to execute it for being an unsigned core
> component.
>
> Explain what you are trying to do, is it for an entire system etc? or just
> a single app, by the looks of it you want an entire app and are trying to
> make some proxying device.
>
> --
> - Mark Randall
> http://zetech.swehli.com
>
> "Lisa Pearlson" <no@xxxxxxxx> wrote in message
> news:%23Xp5D7WcFHA.4040@xxxxxxxxxxxxxxxxxxxxxxx
>> Hi,
>>
>> I'd like to accomplish this (pseudo code):
>>
>> if ( domain = host1.domain1.com || ip = w.x.y.z )
>> {
>> domain = host2.domain2.com;
>> ip = dnslookup ( domain );
>> }
>>
>> On the tcp stack, effectively transparently replacing one ip by another.
>> This requires some low level access to tcp packets so data fields can be
>> manipulated, like firewalls, proxies, nats and pats do. It can be easily
>> accomplished with iptables on linux platform.
>>
>> But how could I implement such thing? Many years ago, I remembered that
>> on the pc you could REPLACE the standard winsock.dll with a proxy stub
>> that takes the place of winsock, and passes everything on to the original
>> winsock.dll, but sitting in the middle and manipulating winsock calls as
>> they come by. But desktop pc firewalls are implemented differently I
>> think.
>>
>> Can this be accomplished on the application level (with winsock api's or
>> something), or does it have to happen on the driver level, or what? I
>> have no clue about how to manipulate IP packets.. on what level that is
>> and how to get access to it.
>>
>> Any hints and pointers are very welcome
>>
>>
>
>


.

Relevant Pages

  • RPC over HTTP, Microsoft solution
    ... Exchange Server 2003 RPC over HTTP Deployment Scenarios ... Place a check in the box next to 'Certificate Services' and click 'Yes' ...
    (microsoft.public.exchange.setup)
  • Re: OWA 2003 w/ Smart Card Authentication.
    ... Exchange 2003 server via ActivSync. ... the IIS certificate. ... Whether or not authentication will succeed is completely dictated by ... Server's SSL certificate must be configured on root of v-server via ...
    (microsoft.public.exchange.connectivity)
  • Re: Configuring LDAP on Entourage 2004 OS X
    ... Microsoft CSS Online Newsgroup Support ... does not work with a self signed SSL certificate OR with the SSL ... configure the System to allow OMA and "Server ActiveSync" access from the ... Configuring Exchange Server 2003 for Client Access. ...
    (microsoft.public.windows.server.sbs)
  • Re: Configuring SBS2003 for OWA and RWW
    ... And make sure certificate will not be ... On the Connection Type page, click Broadband, and then click Next. ... next to Preferred DNS server and next to ... If you are using ISA, please go to ISA management console, and navigate ...
    (microsoft.public.windows.server.sbs)
  • Re: Cant Send e-mails - Outlook 2003
    ... to have me do an "end-around" the Verzon outgoing server. ... Then use the GMAIL outgoing server settings in your Each of your Verizon ... accts, this is for Outlook2003, other versions run similar procedures. ...
    (microsoft.public.outlook.installation)