Hello, I am trying to configure stunnel on windows (version 5.69)
I am using the capi engine with below conf.
I am sending the logs to logstash and not sure if it is working or not.
My questions are:
1) I dont see anything in the log after initializing the service. When it
sends the logs through
Hello!
I'm trying to configure stunnel with an ssl certificate. I have the
certificate (.p12 format) from the site owners, installed it in the
Personal folder of the current user and local machine. Before installing
stunnel I had to select the certificate in the browser when accessing the
site.
I am suddenly getting errors from Fedex:
TLS state (connect): SSLv3 read server certificate A
error queue: 1408D010: error:1408D010:SSL routines:ssl3_get_key_exchange:EC
lib
error queue: 100AE081: error:100AE081:elliptic curve
routines:EC_GROUP_new_by_curve_name:unknown
Is it possible to configure username and password for SMTP connection on
Windows Server, did try this with any success in stunnel.conf
[client]
username = user
password = password
error:
LOG6[main]: Initializing service [client]
LOG3[main]: \stunnel.conf:73: "username = user": Specified
Hi Ian,
SMTP port 587 is for SMTP-with-STARTTLS, which is good. However, port 993 is
for IMAP-over-TLS, not IMAP-with-STARTTLS. You might have more luck with port
143 there (stunnel should do the STARTTLS bit for you, although it's always
worth making sure).
-- Mike
Hi,
I just tried to configure stunnel as proxy between an email client (Outlook
Express) and the email server (SMTP and IMAP). The problem is that the
connection times out in the client while synchronising the IMAP folders. But I
can send emails from the client.
This is my relatively basic
On Tue, Dec 03, 2019 at 09:42:10AM -0500, Christopher Schultz wrote:
> Ajiq,
>
> On 12/3/19 09:13, Ajjq . wrote:
[snip]
> > stunnel.conf
> >
> > debug = 7
> > output = stunnel3.log
> >
> > ; TLS front-end to a web server
> > [https]
> > client=yes
> > accept = 127.0.0.1:80
> > connect =
Ajiq,
On 12/3/19 09:13, Ajjq . wrote:
> Hi Christopher:
>
> You are right. I needed
> C:> TELNET LOCALHOST 80 and expect to be connected to sub.dominio.com:443
>
> I modified stunnel.conf with client=yes. I am including stunnel.con and
> log.
>
> I created the service Stunnel service, but
Ajiq,
On 12/2/19 09:52, Ajjq . wrote:
> I need to enable a /tunnel_out/ for UTL_HTTP from http:// to https://
>
> I installed stunnel 5.34 win32 in a windows 2008 server.
>
> I am including my stunnel.conf y log file (debug=7)
>
> As you can see in the log file, I get this error:
>
>
Paul,
In the configuration screen of Outlook Express v6, try setting the POP server
to be 127.0.0.1
Regards,
Mike
On Thu, Jun 20, 2019 at 11:28 PM +0100, "David Yunker"
wrote:
To anybody who can help,
I am currently using Stunnel version 5.24. I cannot update
To anybody who can help,
I am currently using Stunnel version 5.24. I cannot update it to the latest
version because I am using it on a Windows XP system.
My problem is that I am currently using COX for my internet provider and COX
recently change the email protocol from SSL to TSL.
This is a
rs [mailto:stunnel-users-boun...@stunnel.org] On Behalf Of
> Christopher Schultz
> Sent: Friday, June 07, 2019 11:25 AM
> To: stunnel-users@stunnel.org
> Subject: Re: [stunnel-users] HELP! SSLv3 to TLSv1.2
>
> Eric,
>
> On 6/7/19 13:53, Eric Eberhard wrote:
> > I hav
Eric,
On 6/7/19 13:53, Eric Eberhard wrote:
> I have a weird problem. A remote site that has always used SSLv3 wants
> to use TLSv1.2 – normally that takes 5 seconds in the config file.
>
> However, the remote site supplied the software that sends to them … and
> does not supply a version we
I don't run Solaris, so I can only assume you have a stunnel.conf file in
/etc/stunnel or in /etc location. Edit that location and change:
sslVersion = TLSv1
options = NO_SSLv2
options = NO_SSLv3
to:
sslVersion = TLSv1.2
options = NO_SSLv2
options = NO_SSLv3
On Thu, May 10, 2018 at 12:08
Hi,
We are running stunnel 5.44 on Solaris. Our b2b legacy system is using TLS 1.0.
We have a supplier who recently switched to TLS 1.2 and we can no longer
connect to the site from our b2b. How can I configure stunnel to connect to the
supplier site using TLS 1.2? TIA.
Dan T
This
Hi
Can you help in sorting it out below scenario
We have a URL whose TLS is 1.0 and now it is being upgraded to 1.2. Since the
current application doesn't support V1.0 I am planning to use stunnel in
between to fix the gap. Can you help if my below config is correct or not. The
communication
el-users@stunnel.org>
Sent: Thursday, November 24, 2016 6:45 AM
Subject: RE: [stunnel-users] Help in setting stunnel in server mode to over
come TLSV2 compatibility
Jose,
For the issue as mentioned in below down mail I am following below two
approaches,
1. Move the TLSv1.2 enabled traffic to
Sent: Thursday, November 24, 2016 6:45 AM
Subject: RE: [stunnel-users] Help in setting stunnel in server mode to over
come TLSV2 compatibility
#yiv9373448809 #yiv9373448809 -- _filtered #yiv9373448809
{font-family:Wingdings;panose-1:5 0 0 0 0 0 0 0 0 0;} _filtered #yiv9373448809
{panose-1:2 4
]
Sent: Thursday, November 24, 2016 4:36 PM
To: Chokkalingam, Jothish <jothish.chokkalin...@accenture.com>
Cc: cbro...@cbcs-usa.com; stunnel-users@stunnel.org
Subject: Re: [stunnel-users] Help in setting stunnel in server mode to over
come TLSV2 compatibility
Can you please elaborate? If you wan
lin...@accenture.com>
> Cc: cbro...@cbcs-usa.com; stunnel-users@stunnel.org
> Subject: Re: [stunnel-users] Help in setting stunnel in server mode to over
> come TLSV2 compatibility
>
> Jothish,
>
> Stunnel in server mode is what you need, with 99.9% confidence.
>
> When
sa.com; stunnel-users@stunnel.org
Subject: Re: [stunnel-users] Help in setting stunnel in server mode to over
come TLSV2 compatibility
Jothish,
Stunnel in server mode is what you need, with 99.9% confidence.
When you write:
[https]
Accept=443
Connect=local host:80
Client=no
Stunnnel will expe
There are other tools for performing port forwarding with less overhead
(I believe tappipe is one), although I make use stunnel to do this
extensively.
In order forward a secure connection from one port to another is a two
step process with stunnel:
A sample configuration segment would be:
Hi, there.
I'm no stunnel expert, but here's my $0.05 (we have no pennies in Canada
anymore ;-) ):
- I would try including the key as well as the cert in your stunnel config
- I would enable debug on the openssl s_client call to see if it will indicate
why it is reseting. Same with your SFDC
HI all,
There is a problem we have currently connecting tibco client to SFDC sever via
TLS v1.2 and that's solved by using stunnel in client mode. And the
communication from SFDC client to tibco server applications w.r.t TLS V1.2 I am
unable to solve using stunnel. Below is the configuration
Please everybody out there,
can anybody tell me, if I can wrap a http-proxy request into http over ssl
(https, with sTunnel) and receive it by an Apache https server (without sTunnel
server)?
Best regards
Hathor27
___
stunnel-users mailing list
Thank you for your fast response, Jhon.
My target https-server is a Synology DS211+ with Apache 2.2(Unix).
Its VirtualHost config looks like:
ServerName myhost.mydomain.com
ServerAlias internal.name.local
DocumentRoot /somepath/not/used/at/all/
SSLEngine On
SSLProtocol all -SSLv2
Dear List Members,
I searched, tried and recovered for several days and found no solution that
works.
My topic is to establish an ssh remote session through a http-proxy (http
connect). In case of port restrictions I can only use pure https (443).
So I try to wrap my http-proxy request
[mailto:stunnel-users-boun...@stunnel.org] On Behalf Of Rob
Lockhart
Sent: Saturday, July 11, 2015 12:58 AM
To: stunnel-users@stunnel.org
Subject: Re: [stunnel-users] help on options and sslversion
On Wed, Jul 8, 2015 at 7:56 AM, Madhava Gaikwad (madgaikw)
madga...@cisco.commailto:madga...@cisco.com
Hi,
I am using stunnel 5.03 version. I want to understand how the config option
sslVersion and options works.
The problem I am trying to solve is: I want to enable say only particular ssl
connect methods, for example sslv3 and TLs1.2. I am not able to do it.
For me if I do below setting:
29 matches
Mail list logo
