Universal SSL Tunnel
The stunnel program is designed to work as an SSL encryption wrapper
between a remote client and the local (inetd-startable) or remote
server. The concept is that by having non-SSL aware daemons running on
your system, you can easily set them to communicate with clients over a
secure SSL channel. Stunnel can be used to add SSL functionality to
commonly used inetd daemons, such as POP-2, POP-3, and IMAP servers,
without any changes to the program code.
- Devel package for openSUSE:Factory
-
5
derived packages
- Links to openSUSE:Factory / stunnel
- Download package
-
Checkout Package
osc -A https://api.opensuse.org checkout security:Stunnel/stunnel && cd $_ - Create Badge
Refresh
Refresh
Source Files
| Filename | Size | Changed |
|---|---|---|
| harden_stunnel.service.patch | 0000000784 784 Bytes | |
| stunnel-5.59_service_always_after_network.patch | 0000000388 388 Bytes | |
| stunnel-5.69-default-tls-version.patch | 0000005123 5 KB | |
| stunnel-5.69-system-ciphers.patch | 0000001233 1.2 KB | |
| stunnel-5.73.tar.gz | 0000907200 886 KB | |
| stunnel-5.73.tar.gz.asc | 0000000833 833 Bytes | |
| stunnel.README | 0000000402 402 Bytes | |
| stunnel.changes | 0000069098 67.5 KB | |
| stunnel.keyring | 0000007940 7.75 KB | |
| stunnel.rc | 0000006788 6.63 KB | |
| stunnel.spec | 0000006615 6.46 KB | |
| sysconfig.syslog-stunnel | 0000000386 386 Bytes |
Revision 176 (latest revision is 177)
Pedro Monreal Gonzalez (pmonrealgonzalez)
accepted
request 1205361
from
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 176)
- Update to 5.73:
* Security bugfixes:
- OpenSSL FIPS Provider updated to version 3.0.9.
* Bugfixes:
- Fixed a memory leak while reloading stunnel.conf sections
with "client=yes" and "delay=no".
- Fixed TIMEOUTocsp with values greater than 4.
- Fix the IPv6 test on a non-IPv6 machine.
* Features:
- HELO replaced with EHLO in the post-STARTTLS SMTP protocol
negotiation (thx to Peter Pentchev).
- OCSP stapling fetches moved away from server threads.
- Improved client-side session resumption.
- Added support for the mimalloc allocator.
- Check for protocolHost moved to configuration file processing
for the client-side CONNECT protocol.
- Clarified some confusing OpenSSL's certificate verification
error messages.
- Improved NetBSD compatibility.
Comments 0