Question: Given that OpenSSL is included, can random data be obtained there instead of /dev/urandom? I do not have that pseudo-device on my platform. Thanks, Randall
-----Original Message----- From: openssl-users openssl-users-bounces@openssl.org On Behalf Of Michal Trojnara via openssl-users Sent: Tuesday, September 19, 2023 5:06 PM To: stunnel-users@stunnel.org; stunnel-announce@stunnel.org; openssl- users@openssl.org Subject: stunnel 5.71 released
Dear Users,
I have released version 5.71 of stunnel.
### Version 5.71, 2023.09.19, urgency: MEDIUM
- Security bugfixes
- OpenSSL DLLs updated to version 3.1.3.
- Bugfixes
- Fixed the console output of tstunnel.exe.
- Features sponsored by SAE IT-systems
- OCSP stapling is requested and verified in the client mode.
- Using "verifyChain" automatically enables OCSP stapling in the client mode.
- OCSP stapling is always available in the server mode.
- An inconclusive OCSP verification breaks TLS negotiation. This can be disabled with "OCSPrequire = no".
- Added the "TIMEOUTocsp" option to control the maximum time allowed for connecting an OCSP responder.
- Features
- Added support for Red Hat OpenSSL 3.x patches.
Home page: https://www.stunnel.org/
Download: https://www.stunnel.org/downloads.html
SHA-256 hashes: f023aae837c2d32deb920831a5ee1081e11c78a5d57340f8e6f0829f031017f5 stunnel-5.71.tar.gz 945df5118473bcbf1ecdc5561fd6f26743c5dd1fd82e1a25199d0fd5c39a9373 stunnel-5.71-win64-installer.exe d511df533bb89464a324b2439e7e04b24b6ce26ecc0e03b67ada307725343d40 stunnel-5.71-android.zip
Best regards, Mike