Update CRL in stunnel?

4 More Discussions You Might Find Interesting

1. UNIX for Advanced & Expert Users

Stunnel as non root !!

HI I'm trying to install stunnel as(or in) non-root user. there are these options setuid and setgid in stunnel.conf ,that by default are "nobody". but u can change them to "user" .. to enable stunnel in non root mode I tried doing it but no luck. Please drop in your valuable suggestions ...

2. UNIX for Advanced & Expert Users

Help with Getting Stunnel Running

OS: Sun Solaris 10 (5.10) Stunnel has been installed but when I try to run it, I get a directory permission error. Not sure what it means by 'Not owner' even though that's plain English. I have changed the chroot to a directory (var/tmp) that I'm sure all users have access to so not sure...

3. SCO

Starting up stunnel on SCO Openserver 5.0.7

Hi there I have compiled a binary of stunnel for SCO Openserver 5.0.7 At the moment the binary is in /u/testroom/sbin/stunnel as root I cd to /u/testroom/sbin and start the stunnel daemon up with ./stunnel The stunnel log shows when users successfully connect or disconnect, so...

4. UNIX for Advanced & Expert Users

stunnel will not start

am tring to start stunnel version 4.05 that come standard with Suse Enterprise 9 CD. I intend to start stunnel as a daemon, I have generate and self signed the certificate using openssl with openssl version 0.9.7d but stunnel will not start up instead I received the following error message ...

LEARN ABOUT LINUX

crl

CRL(1SSL)							      OpenSSL								 CRL(1SSL)

NAME

       crl - CRL utility

SYNOPSIS

       openssl crl [-inform PEM|DER] [-outform PEM|DER] [-text] [-in filename] [-out filename] [-noout] [-hash] [-issuer] [-lastupdate]
       [-nextupdate] [-CAfile file] [-CApath dir]

DESCRIPTION

       The crl command processes CRL files in DER or PEM format.

COMMAND OPTIONS

       -inform DER|PEM
	   This specifies the input format. DER format is DER encoded CRL structure. PEM (the default) is a base64 encoded version of the DER form
	   with header and footer lines.

       -outform DER|PEM
	   This specifies the output format, the options have the same meaning as the -inform option.

       -in filename
	   This specifies the input filename to read from or standard input if this option is not specified.

       -out filename
	   specifies the output filename to write to or standard output by default.

       -text
	   print out the CRL in text form.

       -noout
	   don't output the encoded version of the CRL.

       -hash
	   output a hash of the issuer name. This can be use to lookup CRLs in a directory by issuer name.

       -issuer
	   output the issuer name.

       -lastupdate
	   output the lastUpdate field.

       -nextupdate
	   output the nextUpdate field.

       -CAfile file
	   verify the signature on a CRL by looking up the issuing certificate in file

       -CApath dir
	   verify the signature on a CRL by looking up the issuing certificate in dir. This directory must be a standard certificate directory:
	   that is a hash of each subject name (using x509 -hash) should be linked to each certificate.

NOTES

       The PEM CRL format uses the header and footer lines:

	-----BEGIN X509 CRL-----
	-----END X509 CRL-----

EXAMPLES

       Convert a CRL file from PEM to DER:

	openssl crl -in crl.pem -outform DER -out crl.der

       Output the text form of a DER encoded certificate:

	openssl crl -in crl.der -text -noout

BUGS

       Ideally it should be possible to create a CRL using appropriate options and files too.

SEE ALSO

       crl2pkcs7(1), ca(1), x509(1)

1.0.0e								    2000-02-08								 CRL(1SSL)

UNIX and Linux Applications