[stunnel-users]Plan for new authorisation method in Stunnel

Thomas Thiele thielethomas at gmx.de
Wed Oct 11 10:22:53 CEST 2006


Hello Stunnel Users,

I am planning to develop a new authorisation method for Stunnel which I need for work.
This method will be an addition to the existing methods for checking certificates. The idea is to use the subject names and the alternative names of the certificates to allow or drop connections. The subject and alternative names of the machines/clients that are allowed to connect to the server will be written into the Stunnel config. While checking the certificates, the subject and alternative names from the Stunnel config will be compared with the subject and alternative names in the certirficate from the connection request. If one of the names from the Stunnel config matches with the names from the certificate then the connection will be allowed.

This is the basic idea of my project. Is anyone already working on something like that or do you have any ideas or suggestions for me?

Best Regards,

Thomas Thiele

-- 
GMX DSL-Flatrate 0,- Euro* - Überall, wo DSL verfügbar ist!
NEU: Jetzt bis zu 16.000 kBit/s! http://www.gmx.net/de/go/dsl



More information about the stunnel-users mailing list