Hi ,
I am using Stunnel to protect one of my server. I am able to configure the stunnel properly with the help of stunnel. Now i am trying to use the revocation list concept in the stunnel.
For using the stunnel revocation list i performed the following steps.
1. for generating the CRL file openssl ca -gencrl -keyfile ca_key -cert ca_crt -out my_crl.pem
2. for revoking the certificates openssl ca -revoke bad_crt_file -keyfile ca_key -cert ca_crt
The entry specified in the stunnel.conf file is:- CRLfile = my_crl.pem
Surprisingly the client is still able to connect to the server. Is it the problem in my configuration or it is a bug of stunnel.
Regards, Piyush
--------------------------------- Need a vacation? Get great deals to amazing places on Yahoo! Travel.
-
piyush tewari