[stunnel-users] Check IP or Name of Client Or Server by Common Name

Tigran Petrosyan tigran.petrosyan at arca.am
Fri Oct 21 22:37:05 CEST 2011


Hi all,
I have made patch for stunnel-4.43.
It helps you to switch on in the  file of stunnell.conf  new features,
the option name is verify_peer.
you can read more about it after patching, compiling and running the
command "stunnel --help".  The goal of this option to verify clients
or servers "ip addreses or names of ip-addreses"  with "Common name"
of certificate. This option is very flexible and usable. It's possible
to switch it of or use it as in field of global options and  in
service-level options.
verify_peer = client_name | client_ip | remote_name | remote_ip


-- 
Tigran Petrosyan
-------------- next part --------------
A non-text attachment was scrubbed...
Name: stunnel-4.43-verifyCN.patch
Type: application/octet-stream
Size: 9957 bytes
Desc: not available
URL: <http://www.stunnel.org/pipermail/stunnel-users/attachments/20111022/cd1c9e79/attachment.obj>


More information about the stunnel-users mailing list