<html>
<head>
<style><!--
.hmmessage P
{
margin:0px;
padding:0px
}
body.hmmessage
{
font-size: 12pt;
font-family:Calibri
}
--></style></head>
<body class='hmmessage'><div dir='ltr'>Hello -- <div><br></div><div>Is Stunnel (any version) compatible with Fips-2.0 for compliance? I have found one individuals instructions for compiling fips-2.0.5 , but he calls out a prefix= in his configure for FIPS which breaks 140-2 compliance rules and makes the build no longer viable</div><div><br></div><div>From the Fips-2.0 userguide</div><div><br></div><div>"Note that as a condition of the FIPS 140-2 validation no other user specified configuration options</div><div>may be specified. This restriction means that an optional install prefix cannot be specified �</div><div>however, there is no restriction on subsequent manual relocation of the generated files to the</div><div>desired final location."</div><div><br></div><div>I know that Stunnel compiles just fine with OpenSSL1.0.1 versions, but there appears to have been a difference in the method of validation and installation of FIPS modules into a seperate modular directory, and is not located in the openssl/include files after build now</div><div><br></div><div>The stunnel configure script only looks for fips-1.0 as well , so my base assumption is might not be capable of handling FIPS-2.0 at this time.</div> </div></body>
</html>