Re: [stunnel-users] Stunnel and configuration

This is a discussion on Re: [stunnel-users] Stunnel and configuration within the Stunnel Users forums, part of the Networking and Network Related category; Bohdan Linda wrote: > In other words, is it safe to use together: > CAfile=/path/to/my/cacert.pem &...


Go Back   Usenet Forums > Networking and Network Related > Stunnel Users

Reload this Page Re: [stunnel-users] Stunnel and configuration

FAQ Members List Calendar Search Today's Posts Mark Forums Read

Reply

 

LinkBack Thread Tools Display Modes
  #1 (permalink)  
Old 02-22-2005
Michal Trojnara
 
Posts: n/a
Default Re: [stunnel-users] Stunnel and configuration
Bohdan Linda wrote:

> In other words, is it safe to use together:
> CAfile=/path/to/my/cacert.pem
> CApath=/path/to/only/clientcerts

Yes.

> Does not one override other?

No.

> Do you have your cacert.pem symlinked in
> your CApath?

No.

> And lastly as CApath is within chroot, what is the impact
> if certificates stored in are "stolen" by successfull break-in?

Certificates are public, so there's no additional impact.
What you need to protect is your private key.

Best regards,
Mike
_______________________________________________
stunnel-users mailing list
stunnel-users@mirt.net
http://stunnel.mirt.net/mailman/listinfo/stunnel-users
Reply With Quote
Reply

« Previous Thread | Next Thread »

Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are Off
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT +1. The time now is 08:02 AM.

Contact Us - Usenet Forums - Archive - Top

Powered by vBulletin® Version 3.6.8
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO 3.0.0