[stunnel-users] stunnel.cnf should set keyUsage = keyCertSign

• Previous message (by thread): [stunnel-users] stunnel.cnf should set keyUsage = keyCertSign
• Next message (by thread): [stunnel-users] stunnel.cnf should set keyUsage = keyCertSign
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hello,
...Seems you are confusing with openssl.cnf configuration file...
Best regards
Pierre Delaage


Le 11/03/2014 05:31, Athir Nuaimi a écrit :
> I'm trying to write a go program to connect to an stunnel server and 
> verify the certificate but it fails because the go language requires 
> that self-signed certs have keyCertSign set in the keyUsages.  the 
> default stunnel.cnf does not set this.  According to the following 
> message thread this is required by RFC 5280.
>
> https://groups.google.com/forum/#!msg/golang-nuts/LfLHjVkeSj8/YyP-LSPEytEJ 
> <https://groups.google.com/forum/#%21msg/golang-nuts/LfLHjVkeSj8/YyP-LSPEytEJ>
>
> The solution to this is to add 'keyUsage = keyCertSign' to the 
> stunnel.cnf.
>
>
>
>
> _______________________________________________
> stunnel-users mailing list
> stunnel-users at stunnel.org
> https://www.stunnel.org/cgi-bin/mailman/listinfo/stunnel-users

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.stunnel.org/pipermail/stunnel-users/attachments/20140311/6557c1fb/attachment.html>

• Previous message (by thread): [stunnel-users] stunnel.cnf should set keyUsage = keyCertSign
• Next message (by thread): [stunnel-users] stunnel.cnf should set keyUsage = keyCertSign
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]