> I have installed openssl both on my server and client and stunnel to do
> the tunneling between them !
> In the server i run : 'stunnel -d simap -r imapd -p
> /usr/local/ssl/pem/stunnel.pem -v 3 '
> This meens that my server listens to the simap port and unencrypt the
> information and route it to imap port while
> using the server self signed ceritificate & verification level 3 !
>
> On the client i run :
> 'stunnel -c -d imap -r simap -p
> /usr/local/ssl/pem/stunnel.pem'
Are you running these on the same machine? I'm thinking you need
something more like
client# stunnel -c -d imap -r SERVERNAME:simap
server# stunnel -d simap -r simap -p /usr/local/ssl/pem/stunnel.pem
(client doesn't need a certificate unless you want it for
addl authentication.)
For better debugging, include '-D 7' on the command line, and
send it's output as well as 'stunnel -V' output to the stunnel
list. I'd take this off openssl. Subscribe info for the stunnel
mailing list is available at http://www.stunnel.org/
> When i use on the server the -v option i get an error message :
Don't use the '-v' unless you want to verify certs. My guess is
that you don't. '-v' doesn't mean verbose for stunnel.
> I don't have any certificates under /usr/local/ssl/certs to verify !!!
then don't specify '-v'. ;-)
--
Brian Hatch I feel like I'm
Systems and diagonally parked in a
Security Engineer parallel universe.
http://www.ifokr.org/bri/
Every message PGP signed
PGP signature
