Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- root@ben:~# stunnel4 /etc/stunnel/stunnel.conf
- 2011.04.02 15:49:12 LOG7[5001:140695474398976]: Snagged 64 random bytes from /root/.rnd
- 2011.04.02 15:49:12 LOG7[5001:140695474398976]: Wrote 1024 new random bytes to /root/.rnd
- 2011.04.02 15:49:12 LOG7[5001:140695474398976]: RAND_status claims sufficient entropy for the PRNG
- 2011.04.02 15:49:12 LOG7[5001:140695474398976]: PRNG seeded successfully
- 2011.04.02 15:49:12 LOG7[5001:140695474398976]: Certificate: /root/ssl_keys/certificate.crt
- 2011.04.02 15:49:12 LOG7[5001:140695474398976]: Certificate loaded
- 2011.04.02 15:49:12 LOG7[5001:140695474398976]: Key file: /root/ssl_keys/privateKey.key
- 2011.04.02 15:49:12 LOG7[5001:140695474398976]: Private key loaded
- 2011.04.02 15:49:12 LOG7[5001:140695474398976]: SSL context initialized for service https
- 2011.04.02 15:49:12 LOG5[5001:140695474398976]: stunnel 4.29 on x86_64-pc-linux-gnu with OpenSSL 0.9.8o 01 Jun 2010
- 2011.04.02 15:49:12 LOG5[5001:140695474398976]: Threading:PTHREAD SSL:ENGINE Sockets:POLL,IPv6 Auth:LIBWRAP
- 2011.04.02 15:49:12 LOG6[5001:140695474398976]: file ulimit = 1024 (can be changed with 'ulimit -n')
- 2011.04.02 15:49:12 LOG6[5001:140695474398976]: poll() used - no FD_SETSIZE limit for file descriptors
- 2011.04.02 15:49:12 LOG5[5001:140695474398976]: 500 clients allowed
- 2011.04.02 15:49:12 LOG7[5001:140695474398976]: FD 10 in non-blocking mode
- 2011.04.02 15:49:12 LOG7[5001:140695474398976]: FD 11 in non-blocking mode
- 2011.04.02 15:49:12 LOG7[5001:140695474398976]: FD 12 in non-blocking mode
- 2011.04.02 15:49:12 LOG7[5001:140695474398976]: SO_REUSEADDR option set on accept socket
- 2011.04.02 15:49:12 LOG7[5001:140695474398976]: https bound to 0.0.0.0:443
- 2011.04.02 15:49:12 LOG7[5001:140695474398976]: Created pid file /stunnel4.pid
- # local "curl -k https://10.0.3.48/"
- 2011.04.02 15:49:19 LOG7[5001:140695474398976]: https accepted FD=13 from 10.0.3.48:52426
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: https started
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: FD 13 in non-blocking mode
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: TCP_NODELAY option set on local socket
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: Waiting for a libwrap process
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: Acquired libwrap process #0
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: Releasing libwrap process #0
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: Released libwrap process #0
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: https permitted by libwrap from 10.0.3.48:52426
- 2011.04.02 15:49:19 LOG5[5001:140695474525952]: https accepted connection from 10.0.3.48:52426
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: SSL state (accept): before/accept initialization
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: SSL state (accept): SSLv3 read client hello A
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: SSL state (accept): SSLv3 write server hello A
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: SSL state (accept): SSLv3 write certificate A
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: SSL state (accept): SSLv3 write server done A
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: SSL state (accept): SSLv3 flush data
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: SSL state (accept): SSLv3 read client key exchange A
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: SSL state (accept): SSLv3 read finished A
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: SSL state (accept): SSLv3 write change cipher spec A
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: SSL state (accept): SSLv3 write finished A
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: SSL state (accept): SSLv3 flush data
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: 1 items in the session cache
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: 0 client connects (SSL_connect())
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: 0 client connects that finished
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: 0 client renegotiations requested
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: 1 server connects (SSL_accept())
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: 1 server connects that finished
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: 0 server renegotiations requested
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: 0 session cache hits
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: 0 external session cache hits
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: 0 session cache misses
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: 0 session cache timeouts
- 2011.04.02 15:49:19 LOG6[5001:140695474525952]: SSL accepted: new session negotiated
- 2011.04.02 15:49:19 LOG6[5001:140695474525952]: Negotiated ciphers: AES256-SHA SSLv3 Kx=RSA Au=RSA Enc=AES(256) Mac=SHA1
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: FD 14 in non-blocking mode
- 2011.04.02 15:49:19 LOG6[5001:140695474525952]: local_bind succeeded on an ephemeral port
- 2011.04.02 15:49:19 LOG6[5001:140695474525952]: connect_blocking: connecting 127.0.0.1:80
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: connect_blocking: s_poll_wait 127.0.0.1:80: waiting 10 seconds
- 2011.04.02 15:49:19 LOG5[5001:140695474525952]: connect_blocking: connected 127.0.0.1:80
- 2011.04.02 15:49:19 LOG5[5001:140695474525952]: https connected remote server from 10.0.3.48:34990
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: Remote FD=14 initialized
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: TCP_NODELAY option set on remote socket
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: SSL alert (read): warning: close notify
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: SSL closed on SSL_read
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: Socket write shutdown
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: Socket closed on read
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: SSL write shutdown
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: SSL alert (write): warning: close notify
- 2011.04.02 15:49:19 LOG6[5001:140695474525952]: SSL_shutdown successfully sent close_notify
- 2011.04.02 15:49:19 LOG5[5001:140695474525952]: Connection closed: 460 bytes sent to SSL, 150 bytes sent to socket
- 2011.04.02 15:49:19 LOG7[5001:140695474525952]: https finished (0 left)
- # remote "curl -k https://10.0.3.48/"
- 2011.04.02 15:49:24 LOG7[5001:140695474398976]: https accepted FD=13 from 10.0.0.88:45518
- 2011.04.02 15:49:24 LOG7[5001:140695474525952]: https started
- 2011.04.02 15:49:24 LOG7[5001:140695474525952]: FD 13 in non-blocking mode
- 2011.04.02 15:49:24 LOG7[5001:140695474525952]: TCP_NODELAY option set on local socket
- 2011.04.02 15:49:24 LOG7[5001:140695474525952]: Waiting for a libwrap process
- 2011.04.02 15:49:24 LOG7[5001:140695474525952]: Acquired libwrap process #0
- 2011.04.02 15:49:24 LOG7[5001:140695474525952]: Releasing libwrap process #0
- 2011.04.02 15:49:24 LOG7[5001:140695474525952]: Released libwrap process #0
- 2011.04.02 15:49:24 LOG7[5001:140695474525952]: https permitted by libwrap from 10.0.0.88:45518
- 2011.04.02 15:49:24 LOG5[5001:140695474525952]: https accepted connection from 10.0.0.88:45518
- 2011.04.02 15:49:24 LOG7[5001:140695474525952]: SSL state (accept): before/accept initialization
- 2011.04.02 15:49:24 LOG7[5001:140695474525952]: SSL state (accept): SSLv3 read client hello A
- 2011.04.02 15:49:24 LOG7[5001:140695474525952]: SSL state (accept): SSLv3 write server hello A
- 2011.04.02 15:49:24 LOG7[5001:140695474525952]: SSL state (accept): SSLv3 write certificate A
- 2011.04.02 15:49:24 LOG7[5001:140695474525952]: SSL state (accept): SSLv3 write server done A
- 2011.04.02 15:49:24 LOG7[5001:140695474525952]: SSL state (accept): SSLv3 flush data
- 2011.04.02 15:49:24 LOG7[5001:140695474525952]: SSL state (accept): SSLv3 read client key exchange A
- 2011.04.02 15:49:24 LOG7[5001:140695474525952]: SSL state (accept): SSLv3 read finished A
- 2011.04.02 15:49:24 LOG7[5001:140695474525952]: SSL state (accept): SSLv3 write change cipher spec A
- 2011.04.02 15:49:24 LOG7[5001:140695474525952]: SSL state (accept): SSLv3 write finished A
- 2011.04.02 15:49:24 LOG7[5001:140695474525952]: SSL state (accept): SSLv3 flush data
- 2011.04.02 15:49:24 LOG7[5001:140695474525952]: 2 items in the session cache
- 2011.04.02 15:49:24 LOG7[5001:140695474525952]: 0 client connects (SSL_connect())
- 2011.04.02 15:49:24 LOG7[5001:140695474525952]: 0 client connects that finished
- 2011.04.02 15:49:24 LOG7[5001:140695474525952]: 0 client renegotiations requested
- 2011.04.02 15:49:24 LOG7[5001:140695474525952]: 2 server connects (SSL_accept())
- 2011.04.02 15:49:24 LOG7[5001:140695474525952]: 2 server connects that finished
- 2011.04.02 15:49:24 LOG7[5001:140695474525952]: 0 server renegotiations requested
- 2011.04.02 15:49:24 LOG7[5001:140695474525952]: 0 session cache hits
- 2011.04.02 15:49:24 LOG7[5001:140695474525952]: 0 external session cache hits
- 2011.04.02 15:49:24 LOG7[5001:140695474525952]: 0 session cache misses
- 2011.04.02 15:49:24 LOG7[5001:140695474525952]: 0 session cache timeouts
- 2011.04.02 15:49:24 LOG6[5001:140695474525952]: SSL accepted: new session negotiated
- 2011.04.02 15:49:24 LOG6[5001:140695474525952]: Negotiated ciphers: AES256-SHA SSLv3 Kx=RSA Au=RSA Enc=AES(256) Mac=SHA1
- 2011.04.02 15:49:24 LOG7[5001:140695474525952]: FD 14 in non-blocking mode
- 2011.04.02 15:49:24 LOG6[5001:140695474525952]: local_bind succeeded on the original port
- 2011.04.02 15:49:24 LOG6[5001:140695474525952]: connect_blocking: connecting 127.0.0.1:80
- 2011.04.02 15:49:24 LOG7[5001:140695474525952]: connect_blocking: s_poll_wait 127.0.0.1:80: waiting 10 seconds
- ^C2011.04.02 15:49:34 LOG3[5001:140695474398976]: Received signal 2; terminating
- 2011.04.02 15:49:34 LOG7[5001:140695474398976]: removing pid file /stunnel4.pid
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement