If I remember correctly, verify=3 is for verifying against locally installed certificates and has nothing to do with mutual SSL authentication.
I think having verify=somenumber in both server and client will basically do mutual authetication i.e server will check client's certificates and client will check server's.
On Fri, Aug 15, 2008 at 8:34 AM, Christopher Hunt huntc@internode.on.netwrote:
Ah ha - "verify = 3" - thanks!
On 15/08/2008, at 9:12 AM, Brian Hatch wrote:
Mutual authentication uses the verify option on both ends, rather than just on one end. Both sides verify, and both sides present a certificate.
stunnel-users mailing list stunnel-users@mirt.net http://stunnel.mirt.net/mailman/listinfo/stunnel-users