[stunnel-users] The verify=3 option in client mode

Philipp Hartwig philipp.hartwig at uni-due.de
Sat Apr 9 13:33:20 CEST 2011


After looking at the source code I think I understand it: Stunnel does 
not really compare the peer's certificate with the locally installed 
certificate but it only compares their subjects.

If my interpretation is correct maybe the documentation of the "verify" 
option
> level 3 - verify peer with locally installed certificate
should state this? At least I was expecting a stricter form of 
verification.



More information about the stunnel-users mailing list