[stunnel-users] Multiple Domains for https
Thomas Manson
dev.mansonthomas at gmail.com
Thu Feb 23 12:14:35 CET 2012
root at ns0:/etc/stunnel# service stunnel4 start
Starting SSL tunnels: [Started: /etc/stunnel/base.conf] [Started:
/etc/stunnel/mansonthomas.com.conf] stunnel.
Yes !
In fact, my config file was missing the private key :
[mansonthomas.com]
cert = /etc/stunnel/sites/mansonthomas.com/mansonthomas.com.crt
accept = 88.190.217.117:443
connect = 127.0.0.1:82
TIMEOUTclose = 0
I've added the key, and now it starts ;)
Thanks for your help !
Regards,
Thomas.
On Thu, Feb 23, 2012 at 09:39, Ludolf Holzheid
<lholzheid at bihl-wiedemann.de>wrote:
> On Wed, 2012-02-22 23:38:53 +0000, Thomas Manson wrote:
> > [..]
> >
> > the CRT file is generated by my registrar. If it's in the wrong format,
> > How can I convert it?
> >
> > [..]
> >
> > Key file: /etc/stunnel/sites/mansonthomas.com/mansonthomas.com.crt
> > error queue: 140B0009 : error:140B0009:SSL
> > routines:SSL_CTX_use_PrivateKey_file:PEM lib
> > SSL_CTX_use_PrivateKey_file: 906D06C: error:0906D06C:PEM
> > routines:PEM_read_bio:no start line
> > [..]
> >
> > root at ns0:/etc/stunnel/sites/mansonthomas.com# cat mansonthomas.com.crt
> > -----BEGIN CERTIFICATE-----
> > [..]
> > -----END CERTIFICATE-----
> > -----BEGIN DH PARAMETERS-----
> > .....
> > -----END DH PARAMETERS-----
>
> Thomas,
>
> If there is no "-----BEGIN RSA PRIVATE KEY-----" in
> mansonthomas.com.crt, then there is no key in.
>
> You should be provided with a file containing the key.
>
> If this is in DER format (*.pfx or *.p12), you'll have to convert it
> first:
>
> openssl pkcs12 -in <der file> -out <pem file>
>
> HTH,
>
> Ludolf
>
> --
>
> ---------------------------------------------------------------
> Ludolf Holzheid Tel: +49 621 339960
> Bihl+Wiedemann GmbH Fax: +49 621 3392239
> Floßwörthstraße 41 e-mail: lholzheid at bihl-wiedemann.de
> D-68199 Mannheim, Germany
> ---------------------------------------------------------------
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.stunnel.org/pipermail/stunnel-users/attachments/20120223/43e3f4d0/attachment.html>
More information about the stunnel-users
mailing list