public inbox for gentoo-dev@lists.gentoo.org
 help / color / mirror / Atom feed
* [gentoo-dev] stunnel blinding patch breaks client usage
@ 2003-06-20  3:52 Zach Bagnall
  0 siblings, 0 replies; only message in thread
From: Zach Bagnall @ 2003-06-20  3:52 UTC (permalink / raw
  To: gentoo-dev

Hi all.

The blinding patch on stunnel tries to get the private key in order to
determine whether it is an RSA key and therefore RSA blinding is required.

The problem is that when stunnel is run in client mode, the key/cert is
optional. Stunnel dies because it can't access the key.

The workaround is to create a client key/cert PEM file and tell stunnel to
use that file (with the -p option or in stunnel.conf) whenever you use
stunnel in client mode.

More info here: http://forums.gentoo.org/viewtopic.php?p=376333

What I'd like to know is whether blinding is required on the client side
when NOT using an RSA cert for authentication.

Zach.

--
gentoo-dev@gentoo.org mailing list


^ permalink raw reply	[flat|nested] only message in thread

only message in thread, other threads:[~2003-06-20  3:52 UTC | newest]

Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2003-06-20  3:52 [gentoo-dev] stunnel blinding patch breaks client usage Zach Bagnall

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox