[stunnel-users] SSL renegotiation patch

Henrik Riomar henrik.riomar at gmail.com
Wed Sep 19 15:09:53 CEST 2012

> On Wed, Sep 19, 2012 at 1:57 PM, Janusz Dziemidowicz

>> or s_client from stunnel:
>> openssl s_client -host localhost -port 8443 -tls1
>> With s_client, you have to input R and press Enter, it will try to
>> renegotiate then (awesome hack). Also, note that s_client has problems
>> while renegotiating with TLS1.2 (that's why I've added -tls1 option).

Tried this and got this printout;
New, TLSv1/SSLv3, Cipher is AES256-SHA
Server public key is 1024 bit
Secure Renegotiation IS supported

Sure enough I get connection close when I send 'R' but why are is
stunnel "reporting" that it IS supported?

More information about the stunnel-users mailing list