Dear Users,
I have uploaded stunnel-4.35b1 to ftp://stunnel.mirt.net/stunnel/ for
your testing.
Please give it a shot and submit any problems to stunnel-users mailing
list. This is the way you can not only help me improve production
4.35, but also make sure it's going to work on your platform!
Please consider version 4.35b1 highly experimental and not ready for
production. Specifically it is no supposed to be packaged for any OS
distribution (e.g. *BSD ports).
Best regards,
Michal Trojnara
The ChangeLog entry:
Version 4.33, 2010.04.05, urgency: MEDIUM:
* New features
- Win32 DLLs for OpenSSL 1.0.0.
This library requires to c_rehash CApath/CRLpath directories on upgrade.
- Win32 DLLs for zlib 1.2.4.
- Experimental support for local mode on WIN32 platform.
Try "exec = c:\windows\system32\cmd.exe".
* Bugfixes
- Inetd mode fixed
SHA-1 value for stunnel-4.33.tar.gz:
695c7ef834952cb8ddbc790e10b6e32798fc2767
Home page: http://stunnel.mirt.net/
Download: ftp://stunnel.mirt.net/stunnel/
Best regards,
Michal Trojnara
Dear Users,
I'm glad to announce a new version of stunnel.
The ChangeLog entry:
Version 4.32, 2010.03.24, urgency: MEDIUM:
* New features
- New service-level "libwrap" option for run-time control whether
/etc/hosts.allow and /etc/hosts.deny are used for access control.
Disabling libwrap significantly increases performance of stunnel.
- Win32 DLLs for OpenSSL 0.9.8m.
* Bugfixes
- Fixed a transfer() loop issue with SSLv2 connections.
- Fixed a "setsockopt IP_TRANSPARENT" warning with "local" option.
- Logging subsystem bugfixes and cleanup.
- Installer bugfixes for Vista and later versions of Windows.
- FIPS mode can be enabled/disabled at runtime.
SHA-1 value for stunnel-4.32.tar.gz:
e9be8b9150d1c901a7c37b58494e351815147a79
Home page: http://stunnel.mirt.net/
Download: ftp://stunnel.mirt.net/stunnel/
Best regards,
Michal Trojnara
The ChangeLog entry:
Version 4.31, 2010.02.03, urgency: MEDIUM:
* New features
- Log file reopen on USR1 signal was added.
* Bugfixes
- Some regression issues introduced in 4.30 were fixed.
SHA-1 value for stunnel-4.31.tar.gz:
f51fc544a0554f6eee2bfca1fcb8ddcb8386ce32
Home page: http://stunnel.mirt.net/
Download: ftp://stunnel.mirt.net/stunnel/
Best regards,
Michal Trojnara
Dear Users,
Please find a tiny patch for FIPS mode of stunnel 4.30:
ftp://stunnel.mirt.net/stunnel/fips.patch
BTW: Please consider making a donation if you appreciate my work on
configuration file reloading feature.
Use PayPal Donate button on http://stunnel.mirt.net/
Mike
The ChangeLog entry:
Version 4.30, 2010.01.21, urgency: LOW/EXPERIMENTAL:
* New features
- Graceful configuration reload with HUP signal on Unix
and with GUI on Windows.
This release involves major modifications of the code.
I expect some regression issues, so please make sure to test this version
well before running it on your production systems.
SHA-1 value for stunnel-4.30.tar.gz:
46d21c3ad0e761d697f4de8c258ef999287f13f9
Home page: http://stunnel.mirt.net/
Download: ftp://stunnel.mirt.net/stunnel/
Best regards,
Michal Trojnara
Dear Users,
I'm eager to hear your comments, suggestions or issues regarding sessiond.
Feel free to use the stunnel-users mailing list or the bug tracking system:
https://stunnel.mirt.net/?page=bts
Best regards,
Mike
The ChangeLog entry:
Version 4.29, 2009.12.02, urgency: MEDIUM:
* New feature sponsored by Searchtech Limited http://www.astraweb.com/
- sessiond, a high performance SSL session cache was built for stunnel.
A new service-level "sessiond" option was added. sessiond is
available for download on ftp://stunnel.mirt.net/stunnel/sessiond/ .
stunnel clusters will be a lot faster, now!
* Bugfixes
- "execargs" defaults to the "exec" parameter (thx to Peter Pentchev).
- Compilation fixes added for AIX and old versions of OpenSSL.
- Missing "fips" option was added to the manual.
SHA-1 value for stunnel-4.29.tar.gz:
f93ac9054c62b1db0dcf44f668d323d82cc0f413
Home page: http://stunnel.mirt.net/
Download: ftp://stunnel.mirt.net/stunnel/
Best regards,
Michal Trojnara
The ChangeLog entry:
Version 4.28, 2009.11.08, urgency: MEDIUM:
* New features
- Win32 DLLs for OpenSSL 0.9.8l.
- Transparent proxy support on Linux kernels >=2.6.28.
See the manual for details.
- New socket options to control TCP keepalive on Linux:
TCP_KEEPCNT, TCP_KEEPIDLE, TCP_KEEPINTVL.
- SSL options updated for the recent version of OpenSSL library.
* Bugfixes
- A serious bug in asynchronous shutdown code fixed.
- Data alignment updated in libwrap.c.
- Polish manual encoding fixed.
- Notes on compression implementation in OpenSSL added to the manual.
SHA-1 value for stunnel-4.28.tar.gz:
868cba9ec56ed6a02c8ecfa2a87614b4d433611b
Home page: http://stunnel.mirt.net/
Download: ftp://stunnel.mirt.net/stunnel/
Best regards,
Michal Trojnara
Dear Users,
I've just uploaded some patches sent to stunnel-users list over the years
to ftp://stunnel.mirt.net/stunnel/contrib/. Please remember my policy is
*not* to include any GPL code into the official stunnel distribution. If
you're brave you're free to apply the patches yourself, or even create a
fork of stunnel with some additional functionality. Just be aware there
were already some security vulnerabilities (including remote code
execution) discovered in the 3rd party stunnel patches. For this reason I
also don't recommend stunnel package/port maintainers to include any 3rd
party code with stunnel.
Best regards,
Mike
