[stunnel-users] The verify=3 option in client mode

• Previous message (by thread): [stunnel-users] The verify=3 option in client mode
• Next message (by thread): [stunnel-users] stunnel with FIPS and SIGHUP
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

  Philipp Hartwig wrote:
> My understanding is that stunnel will now exclusively accept the  
> server
> certificate stored in the imaps.pem file rendering all MITM attacks
> impossible.
>
> I'd be grateful if someone could confirm that this setup makes  
> sense. Is
> this the way the verify=3 option is supposed to use?

Yes, this is exactly the way "verify = 3" is supposed to be used.

Mike
-------------- next part --------------
A non-text attachment was scrubbed...
Name: PGP.sig
Type: application/pgp-signature
Size: 194 bytes
Desc: This is a digitally signed message part
URL: <http://www.stunnel.org/pipermail/stunnel-users/attachments/20110115/ee7a42e2/attachment.sig>

• Previous message (by thread): [stunnel-users] The verify=3 option in client mode
• Next message (by thread): [stunnel-users] stunnel with FIPS and SIGHUP
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]