Dear Users,
I have released version 5.54 of stunnel.
Version 5.54, 2019.05.15, urgency: LOW
* New features
- New "ticketKeySecret" and "ticketMacSecret" options
to control confidentiality and integrity protection
of the issued session tickets. These options allow
for session resump
Dear Users,
I have released version 5.53 of stunnel.
Version 5.53, 2019.04.10, urgency: HIGH
* Bugfixes
- Fixed data transfer stalls introduced in stunnel 5.51.
* New features
- Android binary updated to support Android 4.x.
Home page: https://www.stunnel.org/
Download: https://www.stunnel.o
Dear Users,
I have released version 5.52 of stunnel.
Version 5.52, 2019.04.08, urgency: HIGH
* Bugfixes
- Fixed a transfer() loop bug introduced in stunnel 5.51.
Home page: https://www.stunnel.org/
Download: https://www.stunnel.org/downloads.html
SHA-256 hashes:
00b973aa0d48b0707dd722c4e0a20b
Dear Users,
I have released version 5.51 of stunnel.
Version 5.51, 2019.04.04, urgency: MEDIUM
* New features
- Hexadecimal PSK keys are automatically converted to binary.
- Session ticket support (requires OpenSSL 1.1.1 or later).
"connect" address persistence is currently unsupported
Dear Users,
I have released version 5.50 of stunnel.
Version 5.50, 2018.12.02, urgency: MEDIUM
* New features
- 32-bit Windows builds replaced with 64-bit builds.
- OpenSSL DLLs updated to version 1.1.1.
- Check whether "output" is not a relative file name.
- Major code cleanup in the con
Dear Users,
I have released version 5.49 of stunnel.
Version 5.49, 2018.09.03, urgency: MEDIUM
* New features
- Performance optimizations.
- Logging of negotiated or resumed TLS session IDs (thx
to ANSSI - National Cybersecurity Agency of France).
- Merged Debian 10-enabled.patch and 11
Dear Users,
I have released version 5.48 of stunnel.
Version 5.48, 2018.07.02, urgency: HIGH
* Security bugfixes
- Fixed requesting client certificate when specified
as a global option.
* New features
- Certificate subject checks modified to accept certificates
if at least one of the
Dear Users,
I have released version 5.47 of stunnel.
Version 5.47, 2018.06.23, urgency: HIGH
* New features
- Fast add_lock_callback for OpenSSL < 1.1.0.
This largely improves performance on heavy load.
- Automatic detection of Homebrew OpenSSL.
- Clarified port binding error logs.
-
On 30.05.2018 19:12, Viktor Dukhovni wrote:
> So I would disable only kDH, but not DHE. Keep in mind that
> some remote systems will not support EECDH, and by disabling
> DHE, you get only kRSA, which is worse. So I think that
> '!DH' is unwise.
I respectfully disagree. The only practical disad
Dear Users,
I have released version 5.46 of stunnel.
Version 5.46, 2018.05.28, urgency: MEDIUM
* New features
- The default cipher list was updated to a safer value:
"HIGH:!aNULL:!SSLv2:!DH:!kDHEPSK".
* Bugfixes
- Default accept address restored to INADDR_ANY.
Home page: https://www.stun
Dear Users,
I have released version 5.45 of stunnel.
Version 5.45, 2018.05.21, urgency: MEDIUM
* New feature sponsored by https://loadbalancer.org/
- Implemented delayed deallocation of service sections
after configuration file reload.
* Other new features
- OpenSSL DLLs updated to versio
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Dear Users,
I have released version 5.31 of stunnel.
The ChangeLog entry:
Version 5.31, 2016.03.01, urgency: HIGH
* Security bugfixes
- OpenSSL DLLs updated to version 1.0.2g.
https://www.openssl.org/news/secadv_20160301.txt
* New features
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Dear Users,
I have released version 5.30 of stunnel.
The ChangeLog entry:
Version 5.30, 2016.01.28, urgency: HIGH
* Security bugfixes
- OpenSSL DLLs updated to version 1.0.2f.
https://www.openssl.org/news/secadv_20160128.txt
* New features
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Hi Guys,
Any idea how to properly use:
STACK_OF(SSL_COMP) *SSL_COMP_get_compression_methods(void);
STACK_OF(SSL_COMP) *SSL_COMP_set0_compression_methods(STACK_OF(SSL_COMP)
*meths);
in the latest
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Dear Users,
I have released version 5.28 of stunnel.
This is a bugfix release. I highly recommend upgrading your stunnel.
The ChangeLog entry:
Version 5.28, 2015.12.11, urgency: HIGH
* New features
- Build matrix (.travis.yml) extended with ./c
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Dear Users,
I have released version 5.27 of stunnel.
The ChangeLog entry:
Version 5.27, 2015.12.03, urgency: MEDIUM
* Security bugfixes
- OpenSSL DLLs updated to version 1.0.2e.
https://www.openssl.org/news/secadv_20151203.txt
* New features
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Dear Users,
I have released version 5.26 of stunnel.
The ChangeLog entry:
Version 5.26, 2015.11.06, urgency: MEDIUM
* Bugfixes
- Compilation fixes for OSX, *BSD and Solaris.
Home page: https://www.stunnel.org/
Download: https://www.stunnel.org
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Dear Users,
I have released version 5.25 of stunnel.
The ChangeLog entry:
Version 5.25, 2015.11.02, urgency: MEDIUM
* New features
- SMTP client protocol negotiation support for
"protocolUsername", "protocolPassword", and
"protocolAuthen
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Dear Users,
I have released version 5.24 of stunnel.
The ChangeLog entry:
Version 5.24, 2015.10.08, urgency: MEDIUM
* New features
- Custom CRL verification was replaced with the internal
OpenSSL functionality.
- *BSD support for "transpar
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Dear Users,
I have released version 5.07 of stunnel.
The ChangeLog entry:
Version 5.07, 2014.11.01, urgency: MEDIUM:
* New features
- Several SMTP server protocol negotiation improvements.
- Added UTF-8 byte order marks to stunnel.conf templates.
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Dear Users,
I have released version 5.06 of stunnel.
This is a security bugfix release. Update is recommended.
The ChangeLog entry:
Version 5.06, 2014.10.15, urgency: HIGH:
* Security bugfixes
- OpenSSL DLLs updated to version 1.0.1j.
https:/
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Dear Users,
I have released version 5.05 of stunnel.
The ChangeLog entry:
Version 5.05, 2014.10.10, urgency: MEDIUM:
* New features
- Asynchronous communication with the GUI thread for faster
logging on Win32.
- systemd socket activation (th
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Dear Users,
I have released version 5.04 of stunnel.
The ChangeLog entry:
Version 5.04, 2014.09.21, urgency: LOW:
* New features
- Support for local mode ("exec" option) on Win32.
- Support for UTF-8 config file and log file.
- Win32 UTF-16 bui
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Dear Users,
I have released version 5.03 of stunnel.
The ChangeLog entry:
Version 5.03, 2014.08.07, urgency: HIGH:
* Security bugfixes
- OpenSSL DLLs updated to version 1.0.1i.
See https://www.openssl.org/news/secadv_20140806.txt
* New feature
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Dear Users,
I have released version 5.02 of stunnel.
The ChangeLog entry:
Version 5.02, 2014.06.09, urgency: HIGH:
* Security bugfixes
- OpenSSL DLLs updated to version 1.0.1h.
See http://www.openssl.org/news/secadv_20140605.txt
* New features
Hi Guys,
I'm glad to announce syringe, a service for testing client-side heartbleed.
It allows to easily examine most of the obscure TLS clients (for example
embedded devices).
The service is available online at https://www.stunnel.org:4433/
Best regards,
Mike
signature.asc
Description: Op
Dear Users,
I have released version 5.01 of stunnel.
The ChangeLog entry:
Version 5.01, 2014.04.08, urgency: HIGH:
* Security bugfixes
- OpenSSL DLLs updated to version 1.0.1g.
This version mitigates TLS heartbeat read overrun (CVE-2014-0160).
* New features
- X.509 extensions added to t
Dear Users,
I have released version 5.00 of stunnel.
The ChangeLog entry:
stunnel 5.00 disables some features previously enabled by default.
Users should review whether the new defaults are appropriate for their
particular deployments. Packages maintainers may consider prepending
the old defaul
Dear Users,
I have released version 4.56 of stunnel.
The ChangeLog entry:
Version 4.56, 2013.03.22, urgency: HIGH:
* New features
- Win32 installer automatically configures firewall exceptions.
- Win32 installer configures administrative shortcuts to invoke UAC.
- Improved Win32 GUI shutdo
Dear Users,
I have released version 4.55 of stunnel. This is a massive bugfix
release, including a security bugfix. Update is highly recommended.
The ChangeLog entry:
Version 4.55, 2013.03.03, urgency: HIGH:
* Security bugfix
- OpenSSL updated to version 1.0.1e in Win32/Android builds.
- B
Dear Users,
I have released version 4.54 of stunnel. The ChangeLog entry:
Version 4.54, 2012.10.09, urgency: MEDIUM:
* New Win32 features
- FIPS module updated to version 2.0.
- OpenSSL DLLs updated to version 1.0.1c.
- zlib DLL updated to version 1.2.7.
- Engine DLLs added: 4758cca, aep, atall
Dear Users,
I have released version 4.53 of stunnel. This is major a bugfix
release. Upgrade is highly recommended.
The ChangeLog entry:
Version 4.53, 2012.03.19, urgency: MEDIUM:
* New features
- Added client-mode "sni" option to directly control the value of
TLS Server Name Indicat
Dear Users,
I have released version 4.52 of stunnel. This is a bugfix release.
Upgrade is highly recommended.
The ChangeLog entry:
Version 4.52, 2012.01.12, urgency: MEDIUM:
* Bugfixes
- Fixed write closure notification for non-socket file descriptors.
- Removed a line logged to stderr
Dear Users,
I have released version 4.51 of stunnel.
The ChangeLog entry:
Version 4.51, 2012.01.09, urgency: MEDIUM:
* New features
- Updated Win32 binary distribution OpenSSL DLLs to version 0.9.8s-fips.
- Updated Android binary OpenSSL to version 1.0.0f.
- Zlib support added to Win32 a
Dear Users,
I have released version 4.50 of stunnel.
The ChangeLog entry:
Version 4.50, 2011.12.03, urgency: MEDIUM:
* New features
- Added Android port.
- Updated INSTALL.FIPS.
* Bugfixes
- Fixed internal memory allocation problem in inetd mode.
- Fixed FIPS mode on Microsoft Vista, Se
Dear Users,
I have released version 4.49 of stunnel.
The ChangeLog entry:
Version 4.49, 2011.11.28, urgency: MEDIUM:
* Bugfixes
- Missing Microsoft Visual C++ Redistributable (msvcr100.dll)
required
by FIPS-compliant OpenSSL library was added to the Windows
installer.
- A bug was fi
Dear Users,
I have released version 4.48 of stunnel.
The ChangeLog entry:
Version 4.48, 2011.11.26, urgency: MEDIUM:
* New features
- FIPS support on Win32 platform added. OpenSSL 0.9.8r DLLs based on
FIPS 1.2.3 canister are included with this version of stunnel.
FIPS
mode can be
Dear Users,
I have released version 4.47 of stunnel.
This version includes a number of important bugfixes.
The ChangeLog entry:
Version 4.47, 2011.11.21, urgency: MEDIUM:
* Internal improvements
- CVE-2010-3864 workaround improved to check runtime version of
OpenSSL
rather than compile
Dear Users,
I have released version 4.46 of stunnel.
The ChangeLog entry:
Version 4.46, 2011.11.04, urgency: LOW:
* New features
- Added Unix socket support (e.g. "connect = /var/run/stunnel/
socket").
- Added "verify = 4" mode to ignore CA chain and only verify peer
certificate.
- Re
Dear Users,
I have released version 4.44 of stunnel.
The ChangeLog entry:
Version 4.44, 2011.09.17, urgency: MEDIUM:
* New features
- Major automake/autoconf cleanup.
- Heap buffer overflow protection with canaries.
- Stack buffer overflow protection with -fstack-protector.
* Bugfixes
-
Dear Users,
I have released version 4.43 of stunnel.
The ChangeLog entry:
Version 4.43, 2011.09.07, urgency: MEDIUM:
* New features
- Updated Win32 DLLs for OpenSSL 1.0.0e.
- Major optimization of the logging subsystem.
Benchmarks indicate up to 15% performance improvement.
* Bugfixes
Dear Users,
I have released version 4.42 of stunnel. This is a security bugfix
release. Upgrade is highly recommended!
The ChangeLog entry:
Version 4.42, 2011.08.18, urgency: HIGH:
* New features
- New verify level 0 to request and ignore peer certificate. This
feature is useful wit
Dear Users,
I have released version 4.41 of stunnel. This is a bugfix release. I
highly recommend Windows users to upgrade.
The ChangeLog entry:
Version 4.41, 2011.07.25, urgency: MEDIUM:
* Bugfixes
- Fixed Windows service crash of stunnel 4.40.
Home page: http://www.stunnel.org/
Downlo
Dear Users,
I have released version 4.40 of stunnel.
The ChangeLog entry:
Version 4.40, 2011.07.23, urgency: LOW:
* New Win32 features
- Added a GUI menu to save cached peer certificate chains.
- Added "-exit" option to stop stunnel *not* running as a service.
This option may be useful
Dear Users,
I have just released version 4.39 of stunnel.
This version includes major improvements of the Windows GUI and
installer.
The ChangeLog entry:
Version 4.39, 2011.07.06, urgency: LOW:
* New features
- New Win32 installer module to build self-signed stunnel.pem.
- Added configur
Dear Users,
I have just released version 4.38 of stunnel.
The ChangeLog entry:
Version 4.38, 2011.06.28, urgency: MEDIUM:
* New features
- Server-side SNI implemented (RFC 3546 section 3.1) with a new
service-level option "nsi".
- "socket" option also accepts "yes" and "no" for flags.
Dear Users,
I have just released version 4.37 of stunnel. This release is mainly
intended to fix bugs and portability issues introduced in versions
4.35 and 4.36.
This version also provides new security defaults, updated to better
match current best practices in cryptographic applications.
Dear Users,
Version 4.36 of stunnel was released.
The ChangeLog entry:
Version 4.36, 2011.05.03, urgency: LOW:
* New features
- Updated Win32 DLLs for OpenSSL 1.0.0d.
- Dynamic memory management for strings manipulation:
no more static STRLEN limit, lower stack footprint.
- Strict pub
Dear Users,
I'm pleased to announce long-awaited version 4.35 of stunnel.
The ChangeLog entry:
* New features
- Updated Win32 DLLs for OpenSSL 1.0.0c.
- Transparent source (non-local bind) added for FreeBSD 8.x.
- Transparent destination ("transparent = destination") added for
Linux.
*
l.mirt.net/stunnel/
Best regards,
Michal Trojnara
__
OpenSSL Project http://www.openssl.org
User Support Mailing Listopenssl-users@openssl.org
Automated Li
Patrick Patterson wrote:
> openssl engine -t -post list_options:35 -post list_certs
Thank you very much for mentioning the "standard Binary Package". The
following even works without a .cnf file:
C:\OpenSSL-Win32\bin>openssl engine -t dynamic -pre SO_PATH:capi -pre
ID:capi -pre LOAD -post list_o
Guys,
I spent a day trying to load CAPI engine in OpenSSL 1.0.0a.
The error I received was:
C:\test>openssl engine -t dynamic -pre "SO_PATH:capieay32" -pre ID:capi
-pre LOAD
WARNING: can't open config file: /usr/local/ssl/openssl.cnf
(dynamic) Dynamic engine loading support
[Success]: SO_PATH:c
c = c:\windows\system32\cmd.exe".
* Bugfixes
- Inetd mode fixed
SHA-1 value for stunnel-4.33.tar.gz:
695c7ef834952cb8ddbc790e10b6e32798fc2767
Home page: http://stunnel.mirt.net/
Download: ftp://stunnel.mirt.net/stunnel/
Best regards,
Michal Trojnara
signature.asc
Description:
- Installer bugfixes for Vista and later versions of Windows.
- FIPS mode can be enabled/disabled at runtime.
SHA-1 value for stunnel-4.32.tar.gz:
e9be8b9150d1c901a7c37b58494e351815147a79
Home page: http://stunnel.mirt.net/
Download: ftp://stunnel.mirt.net/stunnel/
Be
://stunnel.mirt.net/
Download: ftp://stunnel.mirt.net/stunnel/
Best regards,
Michal Trojnara
__
OpenSSL Project http://www.openssl.org
User Support Mailing Listopenssl-users
version
well before running it on your production systems.
SHA-1 value for stunnel-4.30.tar.gz:
46d21c3ad0e761d697f4de8c258ef999287f13f9
Home page: http://stunnel.mirt.net/
Download: ftp://stunnel.mirt.net/stunnel/
Best regards,
Michal Trojnara
Carter Browne wrote:
> I think it is a problem with your website - the copy on the backup site
> works properly.
With all due respect ftp://stunnel.mirt.net/stunnel/ is hardly a website...
Best regards,
Mike
__
OpenSSL Project
Carter Browne wrote:
The link to stunnel-4.29-installer.exe is broken in both Firefox
(error
505) and IE8. The other links I tried were ok.
I guess there is a policy on your Windows machine to disallow
downloading .exe files with a web browser.
You could try to use an FTP client instead
; option was added to the manual.
SHA-1 value for stunnel-4.29.tar.gz:
f93ac9054c62b1db0dcf44f668d323d82cc0f413
Home page: http://stunnel.mirt.net/
Download: ftp://stunnel.mirt.net/stunnel/
Best regards,
Michal Trojnara
__
A-1 value for stunnel-4.28.tar.gz:
868cba9ec56ed6a02c8ecfa2a87614b4d433611b
Home page: http://stunnel.mirt.net/
Download: ftp://stunnel.mirt.net/stunnel/
Best regards,
Michal Trojnara
__
OpenSSL Proj
The ChangeLog entry:
Version 4.27, 2009.04.16, urgency: MEDIUM:
* New features
- Win32 DLLs for OpenSSL 0.9.8k.
- FIPS support was updated for openssl-fips 1.2.
- New priority failover strategy for multiple "connect" targets,
controlled with "failover=rr" (default) or "failover=prio".
nded way to find fipsld in ./configure script?
TIA,
Michal Trojnara
__
OpenSSL Project http://www.openssl.org
User Support Mailing Listopenssl-users@openssl.org
Automated List
Dear Users,
Version 4.26, 2008.09.20, urgency: MEDIUM:
* New features
- Win32 DLLs for OpenSSL 0.9.8i.
- /etc/hosts.allow and /etc/hosts.deny no longer need to be copied to
the chrooted directory, as the libwrap processes are no longer
chrooted.
- A more informative error messages for inv
Dear Users,
Version 4.25, 2008.06.01, urgency: MEDIUM:
* New features
- Win32 DLLs for OpenSSL 0.9.8h.
* Bugfixes
- Spawning libwrap processes delayed until privileges are dropped.
- Compilation fix for systems without struct msghdr.msg_control.
Home page/download: http://stunnel.mirt.net/
Dear Users,
I have just released a new version of stunnel.
Please find below the ChangeLog entry:
Version 4.23, 2008.05.03, urgency: HIGH:
* Bugfixes
- Local privilege escalation bug on Windows NT based
systems fixed. A local user could exploit stunnel
running as a service to gain loca
Dear Users,
The new version is available for download on:
ftp://stunnel.mirt.net/stunnel/
Version 4.21, 2007.10.27, urgency: LOW/EXPERIMENTAL:
* New features sponsored by Open-Source Software Institute
- Initial FIPS 140-2 support (see INSTALL.FIPS for details).
Win32 platform is no
On Sunday 10 December 2006 00:19, Michal Trojnara wrote:
> Calling SSL_connect() and SSL_accept() from a critical section helps a
> little. Instead of core dumps I get the following errors:
>
> SSL_connect: 1408C095:
> error:1408C095:SSL routines:SSL3_GET_FINISHED:digest check fai
On Monday 11 December 2006 18:03, Nils Larsch wrote:
> does it help is you build openssl without BN_DEBUG ? When BN_DEBUG
> is defined bn_check_top() is a macro that should check if the BIGNUM::top
> value is correclty set (note: this isn't really a solution as
> bn_check_top() (without BN_DEBUG_RA
Marek Marcola <[EMAIL PROTECTED]> wrote:
> > Aren't these statements mutually exclusive? How can the dynamic locks be
> > "needed" and "not used" at the same time? Do I have to support them or
> > not? I'm confused...
> No. Dynamic callbacks are used by some ENGINE modules (NCipher for
> example
Michal Trojnara wrote:
> On Sunday 10 December 2006 00:42, Ben Sandee wrote:
>> On 12/9/06, Michal Trojnara wrote:
>> > The library is OpenSSL 0.9.8d configured with:
>> > ./Configure threads shared zlib debug-linux-elf
>> >
>> > Can you help me find
Dear OpenSSL users,
When performing stress-testing of stunnel with session cache
disabled I receive core dumps on concurrent SSL_connect() calls.
Here is an example stack backtrace:
#0 0xa7e60d41 in BN_ucmp (a=0x80a28fc, b=0x80a1f08) at bn_lib.c:662
662 bn_check_top(b);
(gdb) bt
#0
Dear Users,
I have just released a new version of stunnel. Here is the ChangeLog entry:
Version 4.20, 2006.11.30, urgency: MEDIUM:
* Release notes
- The new transfer() function has been well tested.
I recommend upgrading any previous version with this one.
* Bugfixes
- Fixed support for
Dear Users,
A new version of stunnel has just been released.
Version 4.19, 2006.11.11, urgency: LOW/EXPERIMENTAL:
* Release notes
- There are a lot of new features in this version. I recommend
to test it well before upgrading your mission-critical systems.
* New features
- New service-le
James Brown wrote:
[ssmtp]
client = yes
accept = 465
connect = 192.168.1.31:25
Port numbers suggest you're going to setup SSL server
instead of SSL client. Just remove "client = yes" line.
Best regards,
Mike
__
OpenSSL P
Version 4.18, 2006.09.26, urgency: MEDIUM:
* Bugfixes
- GPF on entering private key pass phrase on Win32 fixed.
- Updated Win32 OpenSSL DLLs.
- Minor configure script update.
Home page: http://stunnel.mirt.net/
Download: ftp://stunnel.mirt.net/stunnel/
sha1sum for stunnel-4.18.tar.gz:
3ed3
This is a bugfix release. Upgrade is recommended.
Version 4.17, 2006.09.10, urgency: MEDIUM:
* New features
- Win32 DLLs for OpenSSL 0.9.8c.
* Bugfixes
- Problem with detecting getaddrinfo() in ./configure fixed.
- Compilation problem due to misplaced #endif in ssl.c fixed.
- Duplicate 22
A new version of stunnel has been released.
Version 4.16, 2006.08.31, urgency: MEDIUM:
* New features sponsored by Hewlett-Packard
- A new global option to control engine:
engineCtrl = [:]
- A new service-level option to select engine to read private key:
engineNum =
- OCSP support:
Version 4.15, 2006.03.11, urgency: LOW:
* Release notes
- There are a lot of new features in this version. I recommend
to test it well before upgrading your mission-critical systems.
* Bugfixes
- Fix for pthreads on Solaris 10 (thx to Hans Werner Strube
<[EMAIL PROTECTED]>).
- Atte
Dear OpenSSL users,
OpenSSL 0.9.8a does not allow to properly select AES key length.
It selects both 128-bit and 256-bit AES no matter which one was specified:
[EMAIL PROTECTED]:~$ /usr/local/ssl/bin/openssl version
OpenSSL 0.9.8a 11 Oct 2005
[EMAIL PROTECTED]:~$ /usr/local/ssl/bin/openssl cipher
Dear Users,
Here is the ChangeLog entry:
Version 4.11, 2005.07.09, urgency: MEDIUM:
* New features
- New ./configure option --with-threads to select thread model.
- ./configure option --with-tcp-wrappers renamed to --disable-libwrap.
I hope the meaning of the option is much more clear, n
Here is the ChangeLog entry:
Version 4.10, 2005.04.23, urgency: LOW/EXPERIMENTAL:
* DLLs for OpenSSL 0.9.7g.
* Bugfixes
- Missing locking on Win32 platform was added (thx to Yi Lin
<[EMAIL PROTECTED]>)
- Some problems with closing SSL fixed.
* New features
- New UCONTEXT user-level non-p
On Thursday 07 of April 2005 23:42, Edward Chan wrote:
> I have looked in various code, and I mostly see the latter. But in the
> stunnel code, I see them doing
>
> ENGINE* e = ENGINE_by_id(id);
> ENGINE_init(e);
> ENGINE_set_default(e, ENGINE_METHOD_ALL);
That's exactly what engine(3) manual rec
On 2005-03-29, at 21:15, [EMAIL PROTECTED] wrote:
On Solaris, truss shows this:
18416: poll(0xFEE219D0, 2, 4320) = 1
18416: write(13, "150301\018 3F1DBCCCBCAE3".., 29) Err#32 EPIPE
What is your configuration?
The stunnel source implies that it will retry the shutdown whe
New stunnel 4.09 can be found on my FTP site:
ftp://stunnel.mirt.net/stunnel/
Here is the ChangeLog entry:
* DLLs for OpenSSL 0.9.7f.
* Bugfixes
- Compilation problem with undeclarated socklen_t fixed.
- TIMEOUTclose is not used when there is any data in the buffers.
- Stunnel no longer r
Here is the ChangeLog entry for the new stunnel 4.08:
Version 4.08, 2005.02.27, urgency: LOW:
* New features
- New -quiet option was added to install NT service without a message
box.
* Bugfixes
- Using $(DESTDIR) in tools/Makefile.am.
- Define NI_NUMERICHOST and NI_NUMERICSERV when needed.
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
New release fixes several bugs introduced in version 4.06.
ChangeLog entry:
Version 4.07, 2005.01.03, urgency: MEDIUM:
* Bugfixes
- Problem with infinite poll() timeout negative, but not equal to -1 fixed.
- Problem with a file descriptor ready t
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Here is the ChangeLog entry:
Version 4.06, 2004.12.26, urgency: LOW:
* New feature sponsored by SURFnet http://www.surfnet.nl/
- IPv6 support (to be enabled with ./configure --enable-ipv6).
* New features
- poll() support - no more FD_SETSIZE limi
Dear OpenSSL Users,
I've updated my cross_mingw32.sh script to cross-compile WIN32 binaries
on Unix.
ftp://stunnel.mirt.net/stunnel/openssl/cross_mingw32.sh
I think it could be a good idea to update the script on
http://www.openssl.org/contrib/ page.
Best regards,
Mike
_
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Andrey,
You've discovered a serious bug in the OpenSSL 0.9.7 library.
Disassembling the library revealed that you GPF appeared in the "middle of
list" sestion of the SSL_SESSION_list_remove() function located in the
ssl_sess.c source file. I guess
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Version 4.04, 2003.01.12, urgency: MEDIUM:
* New feature sponsored by SURFnet http://www.surfnet.nl/
- Encrypted private key can be used with Win32 GUI.
* New features
- New 'options' configuration option to setup
OpenSSL library hacks with SSL
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Version 4.03, 2002.10.27, urgency: HIGH:
* NT Service (broken since 4.01) is operational again.
* Memory leak in FORK environments fixed.
* sigprocmask() mistake corrected.
* struct timeval is reinitialized before select().
* EAGAIN handled in client.c
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Version 4.02, 2002.10.21, urgency: HIGH:
* Serious bug in ECONNRESET handling fixed.
Homepage: http://stunnel.mirt.net/
Download: ftp://stunnel.mirt.net/stunnel/
Best regards,
Mike
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.0.6 (GNU/Linux)
C
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Version 4.00, 2002.08.30, urgency: LOW:
* New features sponsored by MAXIMUS http://www.maximus.com/
- New user interface (config file).
- Single daemon can listen on multiple ports, now.
- Native Win32 GUI added.
- Native NT/2000/XP service a
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I've written a script to cross compile OpenSSL DLLs on a Unix platform.
I hope you'll find it useful. My script is in the attachment. It was tested
on Debian GNU/Linux (Woody) and mingw32-linux-x86-glibc-2.1.tar.gz
Best regards,
Mike
-BEGI
I was able to compile openssl executable for Win32 on my Linux machine (just
like I do for my stunnel for a long time).
The target definition in Configure file was:
"mingw32msvc",
"i386-mingw32msvc-gcc:-DL_ENDIAN -fomit-frame-pointer -O3 -m486 -Wall:::-lws
ock32 -lgdi32:BN_LLONG ${x86_gcc_des}
${x
Dustin Swint wrote:
> Aug 21 16:57:05 pearl stunnel[9253]: SSL_connect: error:24064064:
> random number generator:SSLEAY_RAND_BYTES:PRNG not seeded
Read:
http://www.stunnel.org/faq/troubleshooting.html#ToC18
Best regards,
Mike
_
Changelog for version 3.17, 2001.07.29, urgency: MEDIUM:
* Problem with coredump on exit with active threads fixed.
* Timeout for transfer() function added:
- 1 hour if socket is open for read
- 1 minute if socket is closed for read
Homepage: http://stunnel.mirt.net/
Download: ftp://stunne
Changelog for version 3.15, 2001.07.15, urgency: MEDIUM:
* Serious bug resulting in random transfer() hangs fixed.
* Separate file descriptors are used for inetd mode.
* -f (foreground) logs are now stamped with time.
* New ./configure option: --with-tcp-wrappers by Brian Hatch.
* pop3 protoc
Dear OpenSSL maintainers,
Two of OpenSSL functions:
int SSL_get_rfd(SSL *ssl);
int SSL_get_wfd(SSL *ssl);
are docummented in the manual, but not implemented.
It would be nice to have this problem fixed.
Best regards,
Michal Trojnara
the author of stunnel
For your information:
stunnel version 3.9 has been released.
New features:
* Updated temporary key generation:
- stunnel is now honoring requested key-lengths correctly,
- temporary key is changed every hour.
* transfer() no longer hangs on some platforms.
Special thanks to Peter Wageman
1 - 100 of 134 matches
Mail list logo
