Questions tagged [stunnel]

Stunnel is a proxy designed to add TLS encryption functionality to existing clients and servers without any changes in the programs' code. Its architecture is optimized for security, portability, and scalability (including load-balancing), making it suitable for large deployments.

Stunnel uses the OpenSSL library for cryptography, so it supports whatever cryptographic algorithms are compiled into the library. It can benefit from the FIPS 140-2 validation of the OpenSSL FIPS Object Module, as long as the building process meets its Security Policy. A scanned FIPS 140-2 Validation Certificate document is available for download on the NIST web page. The Windows binary installer is compiled with FIPS 140-2 support. The FIPS mode of operation is no longer enabled by default since stunnel 5.00.

Stunnel is a free software authored by Michał Trojnara. Although distributed under GNU GPL version 2 or later with OpenSSL exception, stunnel is not a community project. We retain the copyright of the source code. Please contact us for commercial support or non-GPL licenses. Free, community-based support is also available via stunnel-users mailing list.

162 questions

votes

1 answer

Bad OpenSSL certificate

I am trying to make a fake CA and sign a certificate with it to use with stunnel (which just seems to be calling OpenSSL routines, so you probably don't need to know the program to help :). However, stunnel keeps rejecting my certificate saying that…

asked Sep 09 '09 at 23:37

evilfred

2,314
4
29
44

votes

1 answer

stunnel https gets redirected to http

I have a Web service listening on port 8081 (it's a ServiceStack REST Web Service running on mono, if that helps). I am trying to secure it using stunnel, but the problem is as soon as I connect to https://ip, it gets redirected to http://ip:8081,…

linux mono servicestack stunnel

asked Dec 08 '11 at 20:39

rabin

votes

0 answers

Why does stunnel keep throwing "Address already in use (48)"?

I am working on implementing Auth0 in a Django project, using stunnel to create the https connection. I followed this instruction This is my dev_https file: pid= cert = stunnel/stunnel.pem foreground = yes output =…

django https stunnel

asked Oct 20 '21 at 19:00

CPC464

votes

1 answer

QuickFix C++ and SSL: Issue connecting to LMAX using sTunnel

Goal: Using sTunnel with QuickFix C++: To login to the LMAX UAT over SSL-internet and send FIX 4.2 messages over a TCP connection. Another similar SO question can be found here, but doesn't appear to solve this particular issue. OS: Ubuntu 19.10 |…

c++ ssl quickfix fix-protocol stunnel

asked Jan 30 '21 at 15:16

p.luck

votes

1 answer

HAProxy loadbalancing HTTPs and session failover

We are investigating if it is possible to use HAProxy to load balance across multiple tomcat servers. We would like to use HTTPs for all requests and use sessions via the JSESSIONID cookie. HAProxy doesn't support SSL natively but we can use stunnel…

tomcat ssl haproxy stunnel

asked May 19 '11 at 12:15

Benjamin

votes

2 answers

How to test failing of SSL certificate for certain visitors

For some of my site visitors, the SSL certificate is failing. Whatever tests I do on various browsers for me the SSL certificate is valid. I can't think of how to test this on client side, and to identify the problem. How would you do this? One…

apache testing ssl ssl-certificate stunnel

asked Apr 18 '11 at 06:41

Pentium10

204,586
122
423
502

votes

1 answer

cTrader decode protobuf message from Report API Events (tunnel)

i am dealing with cTrader Trading platform. My project is written in python 3 on tornado. And have issue in decoding the prtobuf message from report API Events. Below will list everything what i achieved and where have the problem. First cTrader…

python stunnel

asked Mar 20 '19 at 09:02

aaa

votes

3 answers

Getting a SSL connection to work with STUNNEL/Win32

The service I need to connect to has provided me three files and I'm trying to figure out what I need to create the Cert=xxx.PEM file that STUNNEL needs I have a "keystore.jks" file. Dumping that with keytool says it's a "Private key entry" I have a…

ssl openssl x509 keytool stunnel

asked Feb 13 '09 at 22:10

rc1

votes

0 answers

routines:SSL23_GET_CLIENT_HELLO:unknown protocol (Redis Cluster + Stunnel)

I have a Redis cluster that I wish to setup stunnel on for the purpose of encrypting traffic to and from each master/slave, and to and from the HAproxy layer above redis. I have configured stunnel with the following configuration…

redis openssl stunnel

asked Jan 31 '17 at 14:48

nwilging

votes

1 answer

How to securely connect to Heroku Redis via the command line?

The Heroku Redis CLI documentation states that connecting via the Heroku CLI is insecure, as it relies on the redis-cli binary. Is there a secure way to connect to a Heroku Redis instance via a command-line interface? Connecting via my local…

security heroku redis stunnel

asked Feb 09 '16 at 21:07

Max Wallace

3,609
31
42

votes

0 answers

stunnel with wss getting ERR_CONNECTION_TIMED_OUT

I'm trying to use stunnel with wss on my site but when I try to connect I always get: WebSocket connection to 'wss://www.soinfit.com:8443/' failed: Error in connection establishment: net::ERR_CONNECTION_TIMED_OUT My socket is running on port 8080…

wss ratchet stunnel

asked Mar 09 '15 at 11:42

dasdasd

1,971
10
45
72

votes

0 answers

ElasticSearch and stunnel

I have managed to setup ElasticSearch using stunnel for single node configuration and it works fantastic. But I am having issues trying to do this for multinode zen unicast. On server 1 I have... Stunnel config [es-server-native] accept =…

elasticsearch stunnel

asked Aug 21 '14 at 19:43

user432024

4,392
8
49
85

votes

1 answer

stunnel "fingerprint does not match"

I'm trying to run stunnel on a clean installation of Win7 and am encountering the following error: FIPS_mode_set: 2D06906E: error:2D06906E:FIPS routines:FIPS_CHECK_INCORE_FINGERPRINT:fingerprint does not match What does it mean? How come that it…

stunnel

asked Dec 01 '11 at 17:30

Jonathan Livni

101,334
104
266
359

votes

0 answers

how build OpenVPN + Stunnel warped android app

as you know for use openvpn + stunnel we need 2 apps ( openvpn ics + ssldroid for Ex ) like this link : https://www.perfect-privacy.com/en/manuals/android_openvpn_stealth_ssldroid i should exclude stunnel on app source ? if yes how can i exclude it…

android android-studio openvpn stunnel ics-openvpn

asked Oct 28 '22 at 23:20

mastering

votes

1 answer

Use Stunnel to connect wss to wsServer

I am trying to use stunnel to turn a wss connection into a ws connection because wsServer doesn't support wss. The server is running Ubuntu, and the client I'm using is Chrome, if it matters. This is my stunnel.conf file foreground = yes debug =…

ssl websocket stunnel

asked May 15 '22 at 19:32

Luke

Prev 1

…

10 11 Next