We have a problem where stunnel dies on our Win32 boxes when we attempt load
tests:
stunnel 4.05 on x86-pc-mingw32-gnu WIN32 with OpenSSL 0.9.7d 17 Mar 2004
Global options
cert = stunnel.pem
ciphers = ALL:!ADH:+RC4:@STRENGTH
debug = 5
key = stunnel.pem
RNDbytes = 64
RNDoverwrite = yes
service = stunnel
session = 300 seconds
taskbar = yes
verify = none
Service-level options
TIMEOUTbusy = 300 seconds
TIMEOUTclose = 60 seconds
TIMEOUTidle = 43200 seconds
When we had one stunnel.cnf for all services it would crash almost
imediately (less than a minute after starting the load). When we created
separate processes for each target server it lasts longer, 5 to 10 minutes,
but still dies. The frustrating part is we get no indications in the log
files of what's going on. It dies in seemingly random spots. The last log
entry is never the same and there's nothing in the cmd window that launched
it to indicate what happened.
The conf is fairly simple:
#script test conf
cert = \stunnel\ohetestisg1.pem
Cafile = \stunnel\css-ca-cert.pem
CApath = \stunnel\certs
output = \stunnel\stunnel-media.log
#verify = 3
client = yes
debug = 7
[**mediaserver]
accept = 127.0.0.3:80
connect = 10.162.130.26:444
TIMEOUTclose = 0
We're connecting to a Cisco Content Server Switch if that helps.
So I'm wondering where to go next. Any ideas on how to troubleshoot this?
Rich Whiffen
_________________________________________________________________
Check out Election 2004 for up-to-date election news, plus voter tools and
more! http://special.msn.com/msn/election2004.armx
Hi
I have one little problem with stunnel .I saw your source and document very instresting .But I cant able to compile your souce code [Stunnel.org] in windows xp @ vc++ envirnment.and I have downloaded supportive compiler mingw ,openssl & libssl32.dll and libeay32.dll . In that source syslog.h is not supporting for vc++ . So kindly reply with Clear details to compile that source
Regds
Ramesh.k
Dear fwd,
> stunnel: md_rand.c:312: ssleay_rand_add: Assertion `md_c[1] ==
> md_count[1]'
> failed.
> 2004.10.03 10:14:44 LOG5[30267:1024]: Received signal 15; terminating
Your OpenSSL library is not properly compiled:
http://lists.freebsd.org/pipermail/freebsd-bugs/2003-April/000362.html
> # stunnel -version
> stunnel 4.05 on i686-pc-linux-gnu PTHREAD+LIBWRAP with OpenSSL 0.9.7c 30
> Sep
> 2003
You use an obsolete version of OpenSSL library. You should upgrade it.
http://www.openssl.org/news/secadv_20040317.txt
Best regards,
Mike
Hi,
I have installed stunnel-4.05 along with openssl-0.9.7d. I am not
able to run it in either daemon or client mode. I read through the
stunnel.org webpage but could find any help.
when i run /usr/local/sbin/stunnel -d 7898 -r 631
i get the following output.
2004.09.24 15:10:47 LOG3[4752:1073866848]: -d: No such file or directory (2)
Syntax:
stunnel [filename] | -fd [n] | -help | -version | -sockets
filename - use specified config file instead of
/usr/local/etc/stunnel/stunnel.conf
-fd n - read the config file from specified file descriptor
-help - get config file help
-version - display version and defaults
-sockets - display default socket options
I have copied the sampel config file as /usr/local/etc/stunnel/stunnel.conf.
what should i do to avoid this?
Is there any good document avalibel explaing step by step installation
and configuration of stunnel?
Thank you,
-Riyaz
Hi Guys,
I am trying to install stunnel-4.05 on Mac 10.2.8. I am following this
http://www.stepwise.com/Articles/Workbench/eart.4.0.html
article. I am up to Step 8: Testing your setup. The article is old, but I am
aware that stunnel 4.* requires a configuration file rather than command
line inputs. My config file is
[imapd]
accept = 993
exec = /usr/local/libexec/imapd
execargs = imaps
My problem is, when I run (taken from the article)
sudo stunnel -c -f -r localhost:993
I get the following, stunnel: command not found
Can I use command line arguments here? It seems to be a very non-specific
error. While hunting around for an answer I read somewhere else that stunnel
likes to die silently? So perhaps I am doing something wrong but getting a
vague error message? Is there a log file that I can look at?
Thank you for any help, it is appreciated and I hope I've provided
sufficient information.
Best Regards,
Robin
_________________________________________________________________
Find love today with ninemsn personals. Click here:
http://ninemsn.match.com?referrer=hotmailtagline
Hi Guys,
I am trying to install stunnel-4.05 on Mac 10.2.8. I am following this
http://www.stepwise.com/Articles/Workbench/eart.4.0.html
article. I am up to Step 8: Testing your setup. The article is old,
but I am aware that stunnel 4.* requires a configuration file rather
than command line inputs. My config file is
[imapd]
accept = 993
exec = /usr/local/libexec/imapd
execargs = imaps
My problem is, when I run (taken from the article)
sudo stunnel -c -f -r localhost:993
I get the following, stunnel: command not found
Can I use command line arguments here? It seems to be a very
non-specific error. While hunting around for an answer I read
somewhere else that stunnel likes to die silently? So perhaps I am
doing something wrong but getting a vague error message? Is there a
log file that I can look at?
Thank you for any help, it is appreciated and I hope I've provided
sufficient information.
Best Regards,
Robin
There's an example of rsync over stunnel at
http://www.stunnel.org/examples/rsync_mike.html
but it appears to be using stunnel 3 syntax. Has anyone
successfully made this work using stunnel 4?
right now /etc/stunnel.conf is same on client and server, has
[rsync]
accept = 2222
connect = 873
Steve Timm
------------------------------------------------------------------
Steven C. Timm, Ph.D (630) 840-8525 timm(a)fnal.gov http://home.fnal.gov/~timm/
Fermilab Computing Div/Core Support Services Dept./Scientific Computing Section
Assistant Group Leader, Farms and Clustered Systems Group
Lead of Computing Farms Team
When I start stunnel 4.05, I am presented with a dialog that requests
that I enter a pass phrase in order to access our private key. Is there
anyway to bypass this dialog. I would like to add the pass phrase to the
config file, so that the dialog isn't presented. Security isn't an
issue. Our config file will be in a secure location. Otherwise, our
operations people are going the have to know the pass phrase to start
stunnel.
Thanks for your help.
John
----------------------------------------------
John Bradley
Software Development
Lava Trading Inc.
95 Morton Street, 4th Floor
New York, NY 10014
Tel: 212.609.0162
Fax: 212.609.0101
www.lavatrading.com <http://www.lavatrading.com/>
This communication (including attachments) contains information that may
be confidential. It is for the exclusive use of the intended
recipient(s). If you are not the intended recipient(s), please note that
any distribution, copying or use of this communication or the
information in it (including, in any attachments) is strictly
prohibited. If you have received this communication in error please
notify us by e-mail or by telephone 212-609-0162 and then delete the
e-mail and all attachments and any copies thereof.