[stunnel-users] External validation of client certificates

Michal Trojnara Michal.Trojnara at mirt.net
Sat Nov 15 11:32:03 CET 2014


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Rene Bartsch wrote:
> Is it possible with stunnel not to validate the client
> certificates against a CA but handover the Distinguished Name to an
> external application which returns the fingerprint to check the
> certificate against?

This is not something supported by stunnel out of the box.
It is certainly possible to add such a feature to stunnel.

Mike
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iEYEARECAAYFAlRnK6MACgkQ/NU+nXTHMtEU3gCg54OUa6bWYT9jzijSi0KriBnx
9/IAoI5CaUbZS4Ckis5XYrZ3l60rb0hT
=gmQ/
-----END PGP SIGNATURE-----


More information about the stunnel-users mailing list