The following tasks may be available, if supported by theĮngine: ALL, RSA, DSA, ECDH, ECDSA, DH, RAND, CIPHERS, DIGESTS, PKEY, The parameter specifies a comma-separated list of task to be engineDefault = TASK_LIST set OpenSSL tasks delegated to the current engine engine = auto | ENGINE_ID select hardware engineĪn example of advanced engine configuration to use theĬertificate and the corresponding private key from an OpenSC PKCS#11ĮngineCtrl = SO_PATH:/usr/local/lib/engines/libpkcs11.soĮngineCtrl = MODULE_PATH:opensc-pkcs11.soĮngineCtrl = COMMAND control hardware engineĪ special command "LOAD" can be used to load engineĬryptographic module. EGD = EGD_PATH (Unix only) path to Entropy Gathering Daemon socketĮntropy Gathering Daemon socket to use to feed the (Facilities are not supported on Win32.)Ĭase is ignored for both facilities and levels. The syslog facility 'daemon' will be used unless a facility Use debug = debug or debug = 7įor greatest debugging output. All logs for the specified level and all levels numerically Level is one of the syslog level names or numbers emerg (0),Īlert (1), crit (2), err (3), warning (4), notice (5), info (6), orĭebug (7).
Several functions of the operating system also need theirįiles to be located within the chroot jail, e.g.:Ĭompression = deflate | zlib select data compression algorithmĭeflate is the standard compression method as described in RFCġ951. Inside the jail and the patches have to be relative to the directory GLOBAL OPTIONS ¶ chroot = DIRECTORY (Unix only) directory to chroot stunnel processĬApath, CRLpath, pid and exec are located A colon-separated pair of IP address (either IPv4, IPv6, or domain name).'' indicating a start of a service definition.Īn address parameter of an option may be either:.
#Stunnel degub install#
This product includes cryptographic software written by Eric OPTIONS ¶ FILE Use specified configuration file -fd N (Unix only) Read the config file from specified file descriptor -help Print stunnel help menu -version Print stunnel version and compile time defaults -sockets Print default socket options -options Print supported TLS options -install (Windows NT and later only) Install NT Service -uninstall (Windows NT and later only) Uninstall NT Service -start (Windows NT and later only) Start NT Service -stop (Windows NT and later only) Stop NT Service -reload (Windows NT and later only) Reload the configuration file of the running NT Service -reopen (Windows NT and later only) Reopen the log file of the running NT Service -exit (Win32 only) Exit an already started stunnel -quiet (Win32 only) Don't display any message boxes CONFIGURATION FILE ¶Įach line of the configuration file can be either: Network sockets without changes to the source code. Standalone daemons like NNTP, SMTP and HTTP, and in tunneling PPP over Stunnel can be used to add TLS functionality toĬommonly used Inetd daemons like POP-2, POP-3, and IMAP servers, to The concept is that having non-TLS aware daemons running on your system youĬan easily set them up to communicate with clients over secure TLS The stunnel program is designed to work as TLS encryption wrapperīetween remote clients and local ( inetd-startable) or remote servers. help | -version | -sockets | -options DESCRIPTION ¶ options WIN32: stunnel [ [ -install | -uninstall | -start | -stop |
SYNOPSIS ¶ Unix: stunnel | -fd N | -help | -version | -sockets |
0 kommentar(er)
