- Stunnel
Infobox_Software
name = Stunnel
caption = Universal SSL Wrapper
developer = Michal Trojnara & Brian Hatch
latest_release_version = 4.26 [http://stunnel.mirt.net/?page=ChangeLog_sdf]
latest_release_date =September 20 ,2008
operating_system = Multi-platform
genre = Proxy,Encryption
license =GNU General Public License
website = [http://stunnel.mirt.net/ stunnel.mirt.net]Stunnel is a free multi-platform
computer program , used to provide universal TLS/SSL tunnelling service.Stunnel can be used to provide secure encrypted connections for clients or servers that do not speak TLS or SSL natively. It runs on a variety of operating systems, including most
Unix-like operating systems and Windows. It relies on a separate library such asOpenSSL orSSLeay to implement the underlying TLS or SSL protocol.Stunnel uses Public-key cryptography with
X.509 digital certificates to secure the SSL connection. Clients can optionally be authenticated via a certificate too.If linked against libwrap, it can be configured to act as a proxy-firewall service as well.
Stunnel is maintained by Michal Trojnara and Brian Hatch. Released under the terms of the
GNU General Public License .Example Scenario
The application can present an external secure SSL port that is mapped to an internal unsecured TCP or UDP port of an existing application.
For example, to provide a secure SSL connection to an existing
SMTP mail server, Stunnel might map the SSL port 465 to port 25 of the mail server. Network traffic from clients connecting to the mail server on port 465 would initially pass over SSL to the Stunnel application, which would then transparently forward unsecured traffic to port 25 of the mail server. The Stunnel process could be running on the same or a different server from the unsecured mail application, however both machines would typically be behind a firewall on a secure internal network.References
External links
* [http://stunnel.mirt.net/ Official Website]
* [http://www.stunnel.org/ Stunnel FAQ / downloads]
Wikimedia Foundation. 2010.
