[stunnel-users] is verify level 4 working?
Thomas Eifert
kxkvi at lavabit.com
Thu Jul 11 22:57:11 CEST 2013
Dan,
I use verify = 4 with seven different servers, but it only misbehaves
with one of them. There must be some aspect of the certificate that
either OpenSSL or Stunnel is having an issue with.
Regards,
Thomas
On 7/11/2013 2:00 AM, dansmith wrote:
> Thank you for clarifying.
> I generated a new self-signed certificate and verify=4 works.
>
> However, when I generate a non-self-signed certificate signed by a third
> party CA, "verify=4" gives me the same error as in my initial post. It
> still expects to find CA's certificate together with the server's
> certificate in CAfile.
> The description in manpage is:*
>
> level 4* Ignore CA chain and only verify peer certificate.
>
> Apparently the description is inaccurate.
>
>
> _______________________________________________
> stunnel-users mailing list
> stunnel-users at stunnel.org
> https://www.stunnel.org/cgi-bin/mailman/listinfo/stunnel-users
>
--
Attention: This message and all attachments are private and may contain
information that is confidential and privileged. If you received this
message in error, please notify the sender by reply email and delete the
message immediately.
More information about the stunnel-users
mailing list