[stunnel-users] ssl3 handshake error

• Previous message (by thread): [stunnel-users] Stunnel compiled with openssl 1.0.1 local binaries are 0.9.8k
• Next message (by thread): [stunnel-users] ssl3 handshake error
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi all,

I'm pretty new to stunnel but did get this config to work on a linux box -
now I am trying the same/similiar config on a win7 box but keep getting the
handshake error below. I am using the latest version of stunnel and have
tried searching for an answer via google, making the proposed changes as
described

No matter what settings I use it always seems to use the sslv3 handshake
which then goes wrong :-(

I'd appreciate any help on this

Colin

My config is as follows:

; **************************************************************************
; * Global options                                                         *
; **************************************************************************

; Debugging stuff (may useful for troubleshooting)
; Some debugging stuff useful for troubleshooting
debug = 7
output = c:\temp\stunnel.log


; Use it for client mode
client = yes

rndbytes = 256
rndfile = c:\temp\randseed.bin

; Some performance tunings
socket = l:TCP_NODELAY=1
socket = r:TCP_NODELAY=1


; Disable FIPS mode to allow non-approved protocols and algorithms
fips = no

; **************************************************************************
; * Service defaults may also be specified in individual service sections  *
; **************************************************************************

; Certificate/key is needed in server mode and optional in client mode
cert = CT_20110324.pem


; Disable support for insecure SSLv2 protocol
sslVersion = TLSv1
options = NO_SSLv2
options = NO_SSLv3


 [CT]
; incoming connection from the client application
accept = 444
; outgoing connection
connect = remote.server.com:443
TIMEOUTclose = 0

Error in log file

2012.04.11 18:33:54 LOG7[3684:3640]: Remote socket (FD=440) initialized
2012.04.11 18:33:54 LOG3[3684:3640]: SSL_connect: 14094410:
error:14094410:SSL routines:SSL3_READ_BYTES:sslv3 alert handshake failure
2012.04.11 18:33:54 LOG5[3684:3640]: Connection reset: 0 byte(s) sent to
SSL, 0 byte(s) sent to socket
2012.04.11 18:33:54 LOG7[3684:3640]: Remote socket (FD=440) closed
2012.04.11 18:33:54 LOG7[3684:3640]: Local socket (FD=408) closed
2012.04.11 18:33:54 LOG7[3684:3640]: Service [CT] finished (0 left)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.stunnel.org/pipermail/stunnel-users/attachments/20120411/a43db056/attachment.html>

• Previous message (by thread): [stunnel-users] Stunnel compiled with openssl 1.0.1 local binaries are 0.9.8k
• Next message (by thread): [stunnel-users] ssl3 handshake error
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]