On Tue, 2011-10-11 18:44:11 +0200, Michal Trojnara wrote:
On Tue, 11 Oct 2011 18:25:00 +0200, Ludolf Holzheid wrote:
We also do run several instances of stunnel with "verify = 3", each with a different set of certificates.
You can specify separate set of certificates for each service section since stunnel 4.15 (released in March 2006).
Ah, o.k, I didn't realize that. Our stunnel configuration dates back to Oct 21 2005 and migrated from hardware to hardware and stunnel version to stunnel version without substantial changes. ("Never change a running system" -- and it's running great.) ;-) Ludolf -- --------------------------------------------------------------- Ludolf Holzheid Tel: +49 621 339960 Bihl+Wiedemann GmbH Fax: +49 621 3392239 Floßwörthstraße 41 e-mail: lholzheid@bihl-wiedemann.de D-68199 Mannheim, Germany ---------------------------------------------------------------