[prev in list] [next in list] [prev in thread] [next in thread]
List: stunnel-users
Subject: Re: [stunnel-users] your mail
From: Brian Hatch <bri () stunnel ! org>
Date: 2008-01-10 15:09:46
Message-ID: 20080110150946.GD24714 () ifokr ! org
[Download RAW message or body]
[Attachment #2 (multipart/signed)]
On or about 2008-01-10 15:34 +0100, khaled45@free.fr directed:
> Here attached files generated.
> can you send me the configuration element of SSL and Stunnel or explain me how
> to generate?
You sent the private keys too - you shouldn't do this. You should
create new keys when done debugging this problem.
I saw only 2 keys - the CA and the stunnel.pem.
Your configuration specifies 3 keys, the CA, stunnel.pem, and is
attempting to verify the SSL client (browser? something else)
against the CA via the 'verify=' line.
What is the SSL client? Did you generate a key for it? Because
your config is requiring the SSL client authenticate itself, and
Stunnel is dropping the connection because that phase isn't working
correctly.
--
Brian Hatch "So, what's the problem?"
Systems and "I don't know.
Security Engineer *That's* the problem."
http://www.ifokr.org/bri/
Every message PGP signed
["signature.asc" (application/pgp-signature)]
_______________________________________________
stunnel-users mailing list
stunnel-users@mirt.net
http://stunnel.mirt.net/mailman/listinfo/stunnel-users
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic