[stunnel-users] help

Michael Zarlenga mzarlenga at gmail.com
Fri Mar 25 07:08:47 CET 2005


Bon giorno, Maddalena,

You updated the client side, but what about the server side?


On Thu, 24 Mar 2005 15:42:39 +0100, Maddalena.Pulcini at seleniacomms.com
<Maddalena.Pulcini at seleniacomms.com> wrote:
> Hi,
> 
> I downloaded libeay32.dll and linssl32.dll. I started stunnel (4.07) and I
> did telnet to my router; after handshake I had the same problem.
> 
> Client Debug
> ================
> 
> 2005.03.24 15:03:28 LOG5[3392:3104]: stunnel 4.07 on x86-pc-mingw32-gnu WIN32+IPv6 with OpenSSL 0.9.7f 22 Mar 2005
> 2005.03.24 15:03:28 LOG7[3392:2524]: Snagged 64 random bytes from C:/.rnd
> 2005.03.24 15:03:28 LOG7[3392:2524]: Wrote 1024 new random bytes to C:/.rnd
> 2005.03.24 15:03:28 LOG7[3392:2524]: RAND_status claims sufficient entropy for the PRNG
> 2005.03.24 15:03:28 LOG6[3392:2524]: PRNG seeded successfully
> 2005.03.24 15:03:28 LOG7[3392:2524]: Certificate: clcert.pem
> 2005.03.24 15:03:28 LOG7[3392:2524]: Key file: clcert.pem
> 2005.03.24 15:03:28 LOG5[3392:2524]: No limit detected for the number of clients
> 2005.03.24 15:03:28 LOG7[3392:2524]: FD 144 in non-blocking mode
> 2005.03.24 15:03:28 LOG7[3392:2524]: SO_REUSEADDR option set on accept socket
> 2005.03.24 15:03:28 LOG7[3392:2524]: telnet bound to 0.0.0.0:23
> 2005.03.24 15:03:39 LOG7[3392:2524]: telnet accepted FD=148 from 127.0.0.1:2133
> 2005.03.24 15:03:39 LOG7[3392:2524]: FD 148 in non-blocking mode
> 2005.03.24 15:03:39 LOG7[3392:2524]: Creating a new thread
> 2005.03.24 15:03:39 LOG7[3392:2524]: New thread created
> 2005.03.24 15:03:39 LOG7[3392:2556]: telnet started
> 2005.03.24 15:03:39 LOG5[3392:2556]: telnet connected from 127.0.0.1:2133
> 2005.03.24 15:03:39 LOG7[3392:2556]: FD 224 in non-blocking mode
> 2005.03.24 15:03:39 LOG7[3392:2556]: telnet connecting 10.36.3.144:4433
> 2005.03.24 15:03:39 LOG7[3392:2556]: connect_wait: waiting 10 seconds
> 2005.03.24 15:03:39 LOG7[3392:2556]: connect_wait: connected
> 2005.03.24 15:03:39 LOG7[3392:2556]: Remote FD=224 initialized
> 2005.03.24 15:03:39 LOG7[3392:2556]: SSL state (connect): before/connect initialization
> 2005.03.24 15:03:39 LOG7[3392:2556]: SSL state (connect): SSLv3 write client hello A
> 2005.03.24 15:03:39 LOG7[3392:2556]: SSL state (connect): SSLv3 read server hello A
> 2005.03.24 15:03:39 LOG7[3392:2556]: SSL state (connect): SSLv3 read server certificate A
> 2005.03.24 15:03:39 LOG7[3392:2556]: SSL state (connect): SSLv3 read server certificate request A
> 2005.03.24 15:03:39 LOG7[3392:2556]: SSL state (connect): SSLv3 read server done A
> 2005.03.24 15:03:39 LOG7[3392:2556]: SSL state (connect): SSLv3 write client certificate A
> 2005.03.24 15:03:39 LOG7[3392:2556]: SSL state (connect): SSLv3 write client key exchange A
> 2005.03.24 15:03:39 LOG7[3392:2556]: SSL state (connect): SSLv3 write certificate verify A
> 2005.03.24 15:03:39 LOG7[3392:2556]: SSL state (connect): SSLv3 write change cipher spec A
> 2005.03.24 15:03:39 LOG7[3392:2556]: SSL state (connect): SSLv3 write finished A
> 2005.03.24 15:03:39 LOG7[3392:2556]: SSL state (connect): SSLv3 flush data
> 2005.03.24 15:04:11 LOG7[3392:2556]: SSL state (connect): SSLv3 read finished A
> 2005.03.24 15:04:11 LOG7[3392:2556]:    1 items in the session cache
> 2005.03.24 15:04:11 LOG7[3392:2556]:    1 client connects (SSL_connect())
> 2005.03.24 15:04:11 LOG7[3392:2556]:    1 client connects that finished
> 2005.03.24 15:04:11 LOG7[3392:2556]:    0 client renegotiatations requested
> 2005.03.24 15:04:11 LOG7[3392:2556]:    0 server connects (SSL_accept())
> 2005.03.24 15:04:11 LOG7[3392:2556]:    0 server connects that finished
> 2005.03.24 15:04:11 LOG7[3392:2556]:    0 server renegotiatiations requested
> 2005.03.24 15:04:11 LOG7[3392:2556]:    0 session cache hits
> 2005.03.24 15:04:11 LOG7[3392:2556]:    0 session cache misses
> 2005.03.24 15:04:11 LOG7[3392:2556]:    0 session cache timeouts
> 2005.03.24 15:04:11 LOG6[3392:2556]: SSL connected: new session negotiated
> 2005.03.24 15:04:11 LOG6[3392:2556]: Negotiated ciphers: AES256-SHA              SSLv3 Kx=RSA      Au=RSA  Enc=AES(256)  Mac=SHA1
> 2005.03.24 15:04:27 LOG7[3392:2556]: SSL alert (write): fatal: bad record mac
> 2005.03.24 15:04:27 LOG3[3392:2556]: SSL_read: 1408F455: error:1408F455:SSL routines:SSL3_GET_RECORD:decryption failed or bad record mac
> 2005.03.24 15:04:27 LOG5[3392:2556]: Connection reset: 17 bytes sent to SSL, 191 bytes sent to socket
> 2005.03.24 15:04:27 LOG7[3392:2556]: telnet finished (0 left)
> ===============================================================================
> 
> How can I procede?
> 
> Thanks&Regards
> 
> Maddalena
> 
> _______________________________________________
> stunnel-users mailing list
> stunnel-users at mirt.net
> http://stunnel.mirt.net/mailman/listinfo/stunnel-users
>



More information about the stunnel-users mailing list