[stunnel-users] stunnel claims it needs certificate

JOSE jtc at totaltravelmarketing.com
Wed Sep 14 21:50:55 CEST 2011


Hi

I am trying to get stunnel stunnel 4.36 on ia64-hp-hpux11.23 with 
OpenSSL 0.9.8o 01 Jun 2010 working on this server and so far I have 
generated a new pem file as per the instructions, but it is the time to 
make to run, it keeps looking for a certificate for one of the services:

bash-3.2# /opt/iexpress/stunnel/bin/stunnel 
/opt/iexpress/stunnel/etc/stunnel/stunnel.conf
Reading configuration from file 
/opt/iexpress/stunnel/etc/stunnel/stunnel.conf
Snagged 64 random bytes from /opt/iexpress/stunnel/etc/stunnel/stunnel.rnd
Wrote 1024 new random bytes to /opt/iexpress/stunnel/etc/stunnel/stunnel.rnd
PRNG seeded successfully
Line 37: End of section revnet_preprod_sunquest: SSL server needs a 
certificate



my conf file is as follows:
bash-3.2# more /opt/iexpress/stunnel/etc/stunnel/stunnel.conf
# Sample stunnel configuration file

#RNDfile=/opt/hpws/apache/stunnel/.stunnel.rnd
RNDfile=/opt/iexpress/stunnel/etc/stunnel/stunnel.rnd
# Chroot
#chroot = /var/chroot/stunnel/

# PID is created inside chroot jail
#pid = /opt/hpws/apache/logs/stunnel.pid
pid = /opt/iexpress/stunnel/etc/stunnel/stunnel.pid
# Workaround for Eudora bug
#options = DONT_INSERT_EMPTY_FRAGMENTS

# Client Authentication
#verify = 2
# don't forget about c_rehash CApath
# it is located inside chroot jail:
#CApath = /certs
# or simply use CAfile instead:
#CAfile = /opt/hpws/apache/conf/certs.pem

# Some debugging stuff
debug = 7
output = /opt/hpws/apache/logs/stunnel.log

# Use in client mode
client = no

# Run in the background
foreground = no

# Service-level configuration
[revnet_preprod_sunquest]
accept  = 10.99.10.37:8011
connect = 127.0.0.1:18011
#connect = 18011

[revnet_preprod_funsun]
accept  = 10.99.10.37:8017
connect = 127.0.0.1:18017
#connect = 18017

any help or tips would be welcome

Thanks

Jose



More information about the stunnel-users mailing list