Stunnel is designed to work as an SSL encryption wrapper between remote client and local (inetd-startable) or remote server.
Stunnel can be used to add SSL functionality to commonly used inetd daemons like POP3, POP2, and IMAP servers without any changes in the programs' code.
Stunnel uses OpenSSL or SSLeay libraries for cryptography, so it supports whatever cryptographic algorithms you compiled into your library.
What's New in This Release: [ read full changelog ]
· Added client-mode "sni" option to directly control the value ofTLS Server Name Indication (RFC 3546) extension.
· Added support for IP_FREEBIND socket option with a pached Linux kernel.
· Glibc-specific dynamic allocation tuning was applied to help unused memorydeallocation.
· Non-blocking OCSP implementation.
· Compilation fixes for old versions of OpenSSL (tested against 0.9.6).
· Usage of uninitialized variables fixed in exec+connect services.
· Occasional logging subsystem crash with exec+connect services.
· OpenBSD compilation fix (thx to Michele Orru').
· Session id context initialized with session name rather than a constant.
· Fixed handling of a rare inetd mode use case, where either stdin or stdoutis a socket, but not both of them at the same time.
· Fixed missing OPENSSL_Applink http://www.openssl.org/support/faq.html#PROG2
· Fixed crash on termination with FORK threading model.
· Fixed dead canary after configuration reload with open connections.
· Fixed missing file de...