Note that when printing the file to the screen, such as with cat, or when editing the file with a text editor, the BOM bytes are usually not displayed. % od -address-radix=n -format=x1c -read-bytes=8 /etc/stunnel/nf To test if those bytes appear, one can use It is here, before the semicolon!' > /etc/stunnel/nf # echo -e '\x ef\x bb\x bf BOM composed of non printable characters. Creating a file with these bytes at its beginning can be done by Its UTF-8 representation is the (hexadecimal) byte sequence 0圎F, 0xBB, 0xBF.
The configuration file should have a UTF-8 byte order mark (BOM), at the beginning of the file. The configuration tokens setuid and setgid are available for this purpose. After verifying correct operation, it is worth explicitly setting lower value in the configuration file.įor better security, it is advised to explicitly set an appropriate uid and gid, other then root, for the global section and the per service sections. The default debug value is 5, which is very verbose. It then connects to where the data should be sent to. The stunnel server accepts TLS encrypted data and extracts it. Stunnel will TLS encrypts its data and connects to the stunnel server. It is composed from a global section, followed by one, or more, service sections.Ī client is one to accept non TLS encrypted data. The main configuration file is read from /etc/stunnel/nf. In order for the stunnel to start up automatically at system boot you must enable it. Depending on your usage, you might also edit the provided systemd units to better handle dependencies.
0 kommentar(er)
