Hi,
while I'm trying to get stunnel working for more than a few hours, I've also notice this warning in google chrome :
the connection had to be retried using SSL 3.0. This typically means that
the server is using very old software and may have other security issues.
[image: Inline image 1]
gmail for example has AES_128_CBC for crypting, can we get that without much effort?
What should be set to get rid of this warning ? I thought SSL v3 was the best (quickly pick acrross several example on the net) what is the best setting for this ?
Thanks for your help, Thomas.
My config :
debug = 7 output = /var/log/stunnel4/extranet.service.com_stunnel.log setuid = stunnel4 setgid = stunnel4 pid = /var/run/stunnel4/extranet.service.com.pid socket = l:TCP_NODELAY=1 socket = r:TCP_NODELAY=1
[extranet.service.com] key = /etc/stunnel/sites/extranet.service.com/extranet.service.com.key cert = /etc/stunnel/sites/extranet.service.com/extranet.service.com.crt accept = 8.90.17.4:443 connect = 127.0.0.1:82 sslVersion = SSLv3 TIMEOUTclose = 0
