I am trying to enable sslv3 by adding the following line to config:

SSL_VERSION = SSLv3

but I keep getting this error:

stunnel.conf:78: "SSL_VERSION = SSLv3": Specified option name is not valid here

Am I doing something wrong?

Thanks,
Mark

On Tue, Sep 13, 2016 at 5:08 AM, Peter Pentchev <roam@ringlet.net> wrote:
On Sun, Sep 11, 2016 at 01:05:29PM -0700, Mark Hannig wrote:
> Can you please help me.  Stunnel has been working fine for months and I
> just started getting these errors in the last day or two.  Thank you:
>
> 2016.09.11 13:43:38 LOG5[10]: Service [ssmtp] accepted connection from
> 46.101.193.127:33818
> 2016.09.11 13:43:40 LOG3[10]: SSL_accept: Peer suddenly disconnected
> 2016.09.11 13:43:40 LOG5[10]: Connection reset: 0 byte(s) sent to SSL, 0
> byte(s) sent to socket
> 2016.09.11 13:43:40 LOG5[11]: Service [ssmtp] accepted connection from
> 46.101.193.127:34154
> 2016.09.11 13:43:40 LOG3[11]: SSL_accept: 1408A10B: error:1408A10B:SSL
> routines:ssl3_get_client_hello:wrong version number
> 2016.09.11 13:43:40 LOG5[11]: Connection reset: 0 byte(s) sent to SSL, 0
> byte(s) sent to socket
> 2016.09.11 13:43:40 LOG5[12]: Service [ssmtp] accepted connection from
> 46.101.193.127:34254
> 2016.09.11 13:43:42 LOG3[12]: s_connect: connect 127.0.0.1:25: Connection
> refused (WSAECONNREFUSED) (10061)
[snip]

Hmm, sorry that I didn't spot this earlier... but this message means
that stunnel tried to connect to the service that you've told it to
connect to (your real service, the SMTP server that you're trying to
protect using SSL), and that service was not accepting connections at
the time.

If the problem persists, can you make sure that your SMTP server is
running and actually listening on the localhost address?

G'luck,
Peter

--
Peter Pentchev  roam@ringlet.net roam@FreeBSD.org pp@storpool.com
PGP key:        http://people.FreeBSD.org/~roam/roam.key.asc
Key fingerprint 2EE7 A7A5 17FC 124C F115  C354 651E EFB0 2527 DF13



--
Mark F. Hannig
mhannig@gmail.com