[stunnel-users] using sTunnel with Chrome (Pierre DUPONT)
Brent Kimberley
brent_kimberley at rogers.com
Mon Sep 9 19:40:11 CEST 2019
Salut Pierre.
I'm not sure what's wrong.
Try using a tool like winmerge, windiff or notepad to compare .\config\stunnel.conf and .\config\openssl.cnf
Then verify that openssl is functional> cd "C:\Program Files (x86)\stunnel"
> .\bin\openssl versionOpenSSL 1.1.1c 28 May 2019
On Monday, September 9, 2019, 09:38:02 a.m. EDT, Pierre DUPONT <pierre.dupont at nedap.fr> wrote:
Hello Brent,
Thanks for your answer. Unfortunately, I could not make these dumps...
Here comes below what I typed, what I got as return and my sTunnel tree (sTunnel and our webservice are both hosted on the same machine running W7 64
C:\Program Files (x86)\stunnel>bin\openssl x509 -in config\stunnel.crt -noout -text
unable to load certificate
3904:error:0909006C:PEM routines:get_name:no start line:crypto/pem/pem_lib.c:745
:Expecting: TRUSTED CERTIFICATE
C:\Program Files (x86)\stunnel>tree /F
Structure du dossier
Le numéro de série du volume est 961B-57B7
C:.
│ uninstall.exe
│
├───bin
│ libcrypto-1_1-x64.dll
│ libssl-1_1-x64.dll
│ openssl.exe
│ stunnel.exe
│ tstunnel.exe
│
├───config
│ ca-certs.pem
│ openssl.cnf
│ stunnel.cert
│ stunnel.conf
│ stunnel.crt
│ stunnel.pem
│ stunnelChrome.cer
│
├───doc
│ stunnel.html
│
└───engines
capi.dll
padlock.dll
pkcs11.dll
With kind regards from
Pierre Dupont
Support & Développement for libraries
Mail : sav.bibli at nedap.fr
Phone : 33 6 13 99 69 38 – 33 1.61.03.03 18
8/10 Chemin d’Andrésy
95610 Eragny sur Oise
-----Message d'origine-----
De : Brent Kimberley [mailto:brent_kimberley at rogers.com]
Envoyé : vendredi 6 septembre 2019 18:02
À : Pierre DUPONT <pierre.dupont at nedap.fr>; stunnel-users at stunnel.org
Cc : Brent Kimberley <brent_kimberley at rogers.com>
Objet : TR: using sTunnel with Chrome (Pierre DUPONT)
Dump your stunnel.crt file.
<stunnel_home>/bin/openssl x509 -in stunnel.crt -noout -text
And, compare with
* section 4 of https://tools.ietf.org/html/rfc5280
* Peer-reviewed public sites. https://www.ssllabs.com/ssltest/
Dump your stunnel.cnf file. And, compare with
stunnel_home>/config/openssl.cnf file
https://access.redhat.com/solutions/28965
https://www.openssl.org/docs/manmaster/man5/x509v3_config.html
----------------------------------------------------------------------
From: Pierre DUPONT <pierre.dupont at nedap.fr>
De : Pierre DUPONT
Envoy? : jeudi 5 septembre 2019 16:55
Cc : _sav.bibli <sav.bibli at nedap.fr>; Philippe ANQUETIN <philippe.anquetin at nedap.fr>
Objet : using sTunnel with Chrome
Good day to all. So far, I can't succeed to use Chrome with sTunnel.
Here is my configuration for sTunnel....
However, I cannot connect on https
I tried several things found browsing the list, like building a certificate with
openssl req -new -x509 -days 365 -nodes -config stunnel.cnf -out stunnel.crt -keyout stunnel.crt
No result so the only solution I see now is to call you for some help...
With kind regards,
Cordiales salutations de
Pierre Dupont
Support S.A.V. & D?veloppement Biblioth?ques
Courriel S.A.V. : sav.bibli at nedap.fr<mailto:sav.bibli at nedap.fr>
06 13 99 69 38 - 01.61.03.03 18
8/10 Chemin d'Andr?sy
95610 Eragny sur Oise
NEDAP LOGO
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.stunnel.org/pipermail/stunnel-users/attachments/20190909/bdbd09f0/attachment.htm>
More information about the stunnel-users
mailing list