LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
Reload this Page [SOLVED] stunnel configuration eroor
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices


Reply
  Search this Thread
Old 02-01-2012, 03:55 AM   #1
jsaravana87
Member
 
Registered: Aug 2011
Location: Chennai,India
Distribution: Redhat,Centos,Ubuntu,Dedian
Posts: 558
Blog Entries: 5

Rep: Reputation: Disabled
stunnel configuration eroor

Hi.

#yum install stunnel

#[root@root stunnel]# ls
bkup EWORLDTR.csr EWORLDTR.key.BAK stunnel.conf
cacert.pem EWORLDTR.key EWORLDTR.PEM stunnel.log


Quote:
i had configured stunnel generated the key pasted over in /etc/stunnel
chmod 600 /etc/stunnel.when i started stunnel service its delivering errot
service stunnel start
Starting stunnel: 2012.02.01 15:24:49 LOG7[28797:3086878416]: Snagged 64 random bytes from /dev/urandom
2012.02.01 15:24:49 LOG7[28797:3086878416]: RAND_status claims sufficient entropy for the PRNG
2012.02.01 15:24:49 LOG6[28797:3086878416]: PRNG seeded successfully
2012.02.01 15:24:49 LOG7[28797:3086878416]: Certificate: /etc/stunnel/EWORLDTR.PEM
2012.02.01 15:24:49 LOG7[28797:3086878416]: Key file: /etc/stunnel/EWORLDTR.key
2012.02.01 15:24:49 LOG3[28797:3086878416]: SSL_CTX_use_RSAPrivateKey_file:
Quote:
B080074: error:0B080074:x509 certificate routines:X509_check_private_key:key values mismatch
cd /etc/stunnel/stunnel.conf

cat stunnel.conf
# Change below to the correct path

cert = /etc/stunnel/EWORLDTR.PEM

key = /etc/stunnel/EWORLDTR.key

CAfile = /etc/stunnel/cacert.pem



client = yes

debug=debug



# Change below to the correct Stunnel log path

output=/etc/stunnel/stunnel.log

verify=1

service=stunnel

[psuedo-https]



#IP Address of MPI Test

connect = xx:5443

accept = 4444
 
Old 02-01-2012, 04:48 AM   #2
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,417

Rep: Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985
This suggests that the key doesn't match the certificate. check their serials: https://kb.wisc.edu/middleware/page.php?id=4064

Do you need those values? You're doing SSL on both sides of stunnel??
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
[SOLVED] kernel compiling eroor vinodk_gautam Linux - Kernel 2 02-28-2011 03:27 AM
Network Eroor speeduhh Linux - General 2 07-12-2005 01:10 PM
Mozilla 10.1 install and IRQ #18 eroor slan124 Mandriva 1 02-07-2005 03:19 PM
eroor on bootup runeleader Linux - Newbie 0 11-18-2004 07:44 PM
ftp server installations access eroor kjsubbu Linux - Networking 2 07-18-2003 01:20 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Server

All times are GMT -5. The time now is 12:21 AM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration