[stunnel-users] Is PSK supported with openssl-1.0.0-beta3 ?

anders nilsson andersnilsson235 at live.se
Thu Nov 5 11:28:58 CET 2009


Hello

I am running x64 Linux 2.6.18-92.1.22.el5 and installed OpenSSL 1.0.0-beta3 15 Jul 2009
My stunnel -version is:
stunnel 4.15 on x86_64-redhat-linux-gnu with OpenSSL 0.9.8e-fips-rhel5 01 Jul 2008

I would like to run the ciphers TLS_PSK_WITH_3DES_EDE_CBC_SHA or TLS_PSK_WITH_AES_128_CBC_SHA and I wonder how I do that.

My stunnel.conf contains: 
ciphers = PSK-AES128-CBC-SHA:PSK-3DES-EDE-CBC-SHA
and the error I get is:
2009.11.05 11:32:32 LOG3[29268:47461015826624]: SSL_CTX_set_cipher_list: 1410D0B9: error:1410D0B9:SSL routines:SSL_CTX_set_cipher_list:no cipher match

Do I compile in the latest OpenSSL to stunnel? Isnt it a problem that the stunnel.conf does not even have the syntax to read PSK-key parameters since its most often run with RSA keys.

Another question is that if there is no support for PSK, how much work is it to download the source and add support for it given that I know C++/C. 


 		 	   		  
_________________________________________________________________
Hitta hetaste singlarna på MSN Dejting!
http://dejting.se.msn.com/channel/index.aspx?trackingid=1002952
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.stunnel.org/pipermail/stunnel-users/attachments/20091105/bab17240/attachment.html>


More information about the stunnel-users mailing list