Dear Users,
I have released version 5.59 of stunnel.
### Version 5.59, 2021.04.05, urgency: HIGH
* Security bugfixes
- OpenSSL DLLs updated to version 1.1.1k.
* New features
- Client-side "protocol = ldap" support (thx to Bart
Dopheide and Seth Grover).
* Bugfixes
- The test suite
Dear Users,
I have released version 5.60 of stunnel.
### Version 5.60, 2021.08.16, urgency: LOW
* New features
- New 'sessionResume' service-level option to allow
or disallow session resumption
- Added support for the new SSL_set_options() values.
- Download fresh ca-certs.pem for
Dear Users,
I have released version 5.61 of stunnel.
### Version 5.61, 2021.12.22, urgency: LOW
* New features sponsored by the University of Maryland
- Added new "protocol = capwin" and "protocol = capwinctrl"
configuration file options.
* New features for the Windows platform
- Added
Hi Roberto,
Thank you for testing. I'm going to issue a bugfix release today or tomorrow.
Best regards,
Mike
On 16/01/2022 22:27, Roberto CORRADO wrote:
Hi Mike,
Good job! Stunnel 5.62 beta 1 work fine!
"""
2022.01.16 22:08:47 LOG6[ui]: Initializing inetd mode configuration
2022.01.16
Dear Users,
I have released version 5.62 of stunnel.
### Version 5.62, 2022.01.17, urgency: MEDIUM
* New features
- Added a bash completion script.
* Bugfixes
- Fixed a transfer() loop bug.
Home page: https://www.stunnel.org/
Download: https://www.stunnel.org/downloads.html
SHA-256
Dear Users,
I have released version 5.63 of stunnel.
### Version 5.63, 2022.03.15, urgency: HIGH
* Security bugfixes
- OpenSSL DLLs updated to version 3.0.2.
* New features
- Updated stunnel.spec to support bash completion.
* Bugfixes
- Fixed a PRNG initialization crash (thx to Gleydson
Dear Users,
I have released version 5.71 of stunnel.
### Version 5.71, 2023.09.19, urgency: MEDIUM
* Security bugfixes
- OpenSSL DLLs updated to version 3.1.3.
* Bugfixes
- Fixed the console output of tstunnel.exe.
* Features sponsored by SAE IT-systems
- OCSP stapling is requested and
On 10/9/23 14:39, Seray Tokadli wrote:
Hi, for our company i need to find the cvmp number for stunnel however
I am not able to find it.
Is there anyone who can help me with that?
https://csrc.nist.gov/projects/cryptographic-module-validation-program/validated-modules/search/all
I could not find
Hi Javier,
stunnel is an encryption tool, and *not* a MUA/MTA, so it is not expected to be
RFC compliant. stunnel only had a very basic understanding of some
application protocols to negotiate TLS.
While encryption may be an optional feature in other applications, stunnel is
specifically
Dear Users,
I have released version 5.65 of stunnel.
On Windows, this release fixes a high severity OpenSSL vulnerability:
https://www.openssl.org/news/secadv/20220705.txt
### Version 5.65, 2022.07.17, urgency: HIGH
* Security bugfixes
- OpenSSL DLLs updated to version 3.0.5.
* Bugfixes
-
Dear Users,
I have released version 5.64 of stunnel. This release only includes Windows
fixes and improvements.
### Version 5.64, 2022.05.06, urgency: MEDIUM
* Security bugfixes
- OpenSSL DLLs updated to version 3.0.3.
* New features
- Updated the pkcs11 engine for Windows.
* Bugfixes
-
Hi David,
On 8/26/22 13:51, david.rundqv...@gmail.com wrote:
> If I hash the client certificates and put them in a folder (with file names
> .0), and use the CAPath parameter on the server, together with
> verify=3, the server's Certificate Request message contains an empty list of
>
On 27/10/2022 18:08, decatu...@163.com wrote:
Hi, all.
I have done "make && make install" under "sudo", then I got this when "make
cert"
---
...
139784943940928:error:25066067:DSO support routines:dlfcn_load:could not load
the
Dear Users,
I have released version 5.66 of stunnel.
### Version 5.66, 2022.09.11, urgency: MEDIUM
* New features
- OpenSSL 3.0 FIPS Provider support for Windows.
* Bugfixes
- Fixed building on machines without pkg-config.
- Added the missing "environ" declaration for
BSD-based
Hi Johann,
I investigated this issue it and I found out that encrypted private keys were
never working with OpenSSL 3.0 (regardless of stunnel version).
Thank you very much for reporting this bug!
Please try building
https://www.stunnel.org/downloads/beta/stunnel-5.66b1.tar.gz from source.
Dear Users,
I have released version 5.67 of stunnel.
### Version 5.67, 2022.11.01, urgency: HIGH
* Security bugfixes
- OpenSSL DLLs updated to version 3.0.7.
* New features
- Provided a logging callback to custom engines.
* Bugfixes
- Fixed "make cert" with OpenSSL older than 3.0.
-
On 13/01/2023 20:05, Gary Jackson wrote:
2023.01.13 14:03:42 LOG6[16572]: TLS accepted: new session negotiated
2023.01.13 14:03:42 LOG6[16572]: TLSv1.2 ciphersuite:
ECDHE-RSA-AES256-GCM-SHA384 (256-bit encryption)
2023.01.13 14:03:42 LOG6[16572]: SSL_read: Socket is closed
2023.01.13 14:03:42
Hi Kimura-san,
On 20/02/2023 10:58, Yasuhiro Kimura wrote:
[!] No trusted certificates found
The latest release of stunnel started using an OpenSSL function that doesn't
work on Windows.
We submitted a pull request to the OpenSSL project and published a beta
installer that includes a
Dear Users,
I have released version 5.69 of stunnel.
### Version 5.69, 2023.03.04, urgency: MEDIUM
* New features
- Improved logging performance with the "output" option.
- Improved file read performance on the WIN32 platform.
- DH and kDHEPSK ciphersuites removed from FIPS defaults.
-
On 26/04/2023 11:20, Peter Pentchev wrote:
Um. Yeah. One thing that may have tripped you up is that due to
historical reasons, the stunnel package in Debian is called "stunnel4".
I have had plans for fixing that, renaming it back to "stunnel", but
it is a bit complicated (especially if one wants
Dear Users,
I have released version 5.68 of stunnel.
### Version 5.68, 2023.02.07, urgency: HIGH
* Security bugfixes
- OpenSSL DLLs updated to version 3.0.8.
* New features
- Added the new 'CAengine' service-level option
to load a trusted CA certificate from an engine.
- Added
Hi Phan Anh,
Can you please execute "stunnel -version" on that system (the command
"stunnel" with the "-version" parameter")?
Yes, updating both stunnel *and* OpenSSL to their latest stable versions
(5.69 and 3.1.1 respectively) is a good idea.
What exactly is this "mbient-linux"? Which
Hi David,
The goal of *not* having the "latest" links was to make it harder for
people to just fetch the latest stunnel from my server in their CI/CD
pipelines (potentially, on each commit) instead of using their local
mirror. I see thousands of automated requests from a single IP address
Hi Phan Anh,
The "corrupted double-linked list" error in malloc_consolidate() means
that the heap data structures were already corrupted before executing
this operation. Running stunnel with valgrind should identify the root
cause. See https://valgrind.org/ for details.
Please also
Hi,
[!] /etc/stunnel/stunnel.conf:24: "output = /tmp/stunnel.log": Specified
option name is not valid here
The error says that you tried to put a global configuration file option
("output") in a service section.
See https://www.stunnel.org/static/stunnel.html for details.
Best regards,
On 05/05/2023 01:14, sportm...@netzero.com wrote:
Thought I'd try adding more details. Again, a Stunnel user for many years. Just
do not understand what needs to be done for me to deliver this newest version
of Stunnel to a client that is running my software. I currently have all
Stunnel
26 matches
Mail list logo