82d23f55cc
- update to version 5.35 - repackage source as bz2 - adjust systemd unit file to start after network-online.target - bugixes: * Fixed incorrectly enforced client certificate requests. * Fixed thread safety of the configuration file reopening. * Fixed malfunctioning "verify = 4". * Only reset the watchdog if some data was actually transferred. * Fixed logging an incorrect value of the round-robin starting point (thx to Jose Alf.). - new features: * Added three new service-level options: requireCert, verifyChain, and verifyPeer for fine-grained certificate verification control. * SNI support also enabled on OpenSSL 0.9.8f and later (thx to Guillermo Rodriguez Garcia). * Added support for PKCS #12 (.p12/.pfx) certificates (thx to Dmitry Bakshaev). * New "socket = a:IPV6_V6ONLY=yes" option to only bind IPv6. * Added logging the list of client CAs requested by the server. OBS-URL: https://build.opensuse.org/request/show/429283 OBS-URL: https://build.opensuse.org/package/show/security:Stunnel/stunnel?expand=0&rev=76
15 lines
343 B
Desktop File
15 lines
343 B
Desktop File
[Unit]
|
|
Description=SSL tunnel for network daemons
|
|
Wants=network-online.target
|
|
After=syslog.target network-online.target
|
|
|
|
[Service]
|
|
ExecStart=/usr/sbin/stunnel
|
|
Type=forking
|
|
# stunnel is chrooted, so pidpath is combination of 2 configfile options
|
|
PIDFile=/var/lib/stunnel/var/run/stunnel.pid
|
|
Restart=always
|
|
|
|
[Install]
|
|
WantedBy=multi-user.target
|