i try to start stunnel and get the following error:
root@rozrhintt01 :/usr/local/etc/stunnel $ stunnel 2012.01.10 13:20:28 LOG7[12080:1]: Clients allowed=125 2012.01.10 13:20:28 LOG5[12080:1]: stunnel 4.50 on i386-pc-solaris2.10 platform 2012.01.10 13:20:28 LOG5[12080:1]: Compiled/running with OpenSSL 0.9.8l 5 Nov 2009 2012.01.10 13:20:28 LOG5[12080:1]: Threading:PTHREAD SSL:ENGINE Auth:none Sockets:POLL,IPv6 2012.01.10 13:20:28 LOG5[12080:1]: Reading configuration from file /usr/local/etc/stunnel/stunnel.conf 2012.01.10 13:20:28 LOG7[12080:1]: Snagged 64 random bytes from //.rnd 2012.01.10 13:20:28 LOG7[12080:1]: Wrote 1024 new random bytes to //.rnd 2012.01.10 13:20:28 LOG7[12080:1]: PRNG seeded successfully 2012.01.10 13:20:28 LOG6[12080:1]: Initializing SSL context for service stunnel 2012.01.10 13:20:28 LOG7[12080:1]: Certificate: /usr/local/etc/stunnel/stunnel.pem 2012.01.10 13:20:28 LOG7[12080:1]: Certificate loaded 2012.01.10 13:20:28 LOG7[12080:1]: Key file: /usr/local/etc/stunnel/stunnel.pem 2012.01.10 13:20:28 LOG7[12080:1]: Private key loaded 2012.01.10 13:20:28 LOG7[12080:1]: Using DH parameters from /usr/local/etc/stunnel/stunnel.pem 2012.01.10 13:20:28 LOG7[12080:1]: DH initialized with 1024-bit key 2012.01.10 13:20:28 LOG7[12080:1]: ECDH initialized with curve prime256v1 2012.01.10 13:20:28 LOG7[12080:1]: SSL options set: 0x01000000 2012.01.10 13:20:28 LOG6[12080:1]: SSL context initialized 2012.01.10 13:20:28 LOG5[12080:1]: Configuration successful 2012.01.10 13:20:28 LOG3[12080:1]: /var/log/stunnel.log: No such file or directory (2) 2012.01.10 13:20:28 LOG3[12080:1]: Unable to open output file: /var/log/stunnel.log 2012.01.10 13:20:28 LOG7[12080:1]: Service stunnel started 2012.01.10 13:20:28 LOG5[12080:1]: Service stunnel accepted connection
root@rozrhintt01 :/usr/local/etc/stunnel $ ls -la /var/log/stunnel.log
-rwxrwxrwx 1 root sys 0 Jan 10 10:02 /var/log/stunnel.log
root@rozrhintt01 :/usr/local/etc/stunnel $
root@rozrhintt01 :/usr/local/etc/stunnel $ more stunnel.conf
; Sample stunnel configuration file for Unix by Michal Trojnara 2002-2011
; Some options used here may be inadequate for your particular configuration
; This sample file does *not* represent stunnel.conf defaults
; Please consult the manual for detailed description of available options
; **************************************************************************
; * Global options *
; **************************************************************************
; A copy of some devices and system files is needed within the chroot jail
; Chroot conflicts with configuration file reload and many other features
chroot = /usr/local/var/lib/stunnel/
; Chroot jail can be escaped if setuid option is not used
setuid = root
setgid = sys
; PID is created inside the chroot jail
pid = /stunnel.pid
; **************************************************************************
; * Service defaults may also be specified in individual service sections *
; **************************************************************************
; Certificate/key is needed in server mode and optional in client mode
cert = /usr/local/etc/stunnel/stunnel.pem
;key = /usr/local/etc/stunnel/mail.pem
; Authentication stuff needs to be configured to prevent MITM attacks
; It is not enabled by default!
;verify = 2
; Don't forget to c_rehash CApath
; CApath is located inside chroot jail
;CApath = /certs
; It's often easier to use CAfile
;CAfile = /usr/local/etc/stunnel/certs.pem
; Don't forget to c_rehash CRLpath
; CRLpath is located inside chroot jail
;CRLpath = /crls
; Alternatively CRLfile can be used
;CRLfile = /usr/local/etc/stunnel/crls.pem
; Disable support for insecure SSLv2 protocol
options = NO_SSLv2
; Workaround for Eudora bug
;options = DONT_INSERT_EMPTY_FRAGMENTS
