pkgsrc-Bugs archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
Re: pkg/23245 (security/stunnel does not terminate properly.)
The following reply was made to PR pkg/23245; it has been noted by GNATS.
From: Hauke Fath <hauke%Espresso.Rhein-Neckar.DE@localhost>
To: gnats-bugs%NetBSD.org@localhost
Cc: pkg-manager%NetBSD.org@localhost, gnats-admin%NetBSD.org@localhost,
asau%NetBSD.org@localhost
Subject: Re: pkg/23245 (security/stunnel does not terminate properly.)
Date: Sun, 4 Apr 2010 16:00:45 +0200
At 13:57 Uhr +0000 2.11.2009, asau%NetBSD.org@localhost wrote:
>Synopsis: security/stunnel does not terminate properly.
>
>Does the problem persist with stunnel-4.27 (current) and supported release?
Sorry for the late reply. I just checked with stunnel 4.32 (easy pkg
update, just adjust checksum)
# uname -mrs
NetBSD 4.0_STABLE sparc
# stunnel -version
stunnel 4.32 on sparc--netbsdelf with OpenSSL 0.9.8e 23 Feb 2007
Threading:PTHREAD SSL:ENGINE Sockets:POLL,IPv6 Auth:LIBWRAP
Global options
debug = daemon.notice
pid = /var/run/stunnel.pid
RNDbytes = 64
RNDfile = /dev/urandom
RNDoverwrite = yes
Service-level options
cert = /etc/pkg/stunnel/stunnel.pem
ciphers = ALL:!ADH:+RC4:@STRENGTH
session = 300 seconds
stack = 65536 bytes
sslVersion = SSLv3 for client, all for server
TIMEOUTbusy = 300 seconds
TIMEOUTclose = 60 seconds
TIMEOUTconnect = 10 seconds
TIMEOUTidle = 43200 seconds
verify = none
#
and things are worse than ever. Using the following stunnel config file
# $Id: stunnel.conf,v 1.4 2006/12/08 23:11:39 hauke Exp hauke $
#
# stunnel setup for uucp client
syslog = no
debug = mail.debug
output = /var/log/stunnel.log
foreground = no
client = yes
pid =
[uucico]
connect = uucp.rninet.net:940
exec = /usr/pkg/sbin/uucico
execargs = uucico --nodetach --debug abnormal -S uucp
pty = yes
with "foreground = yes" set, uucico is executed, then stunnel hangs there,
not terminating. With "foreground = no", the log has
2010.04.04 15:40:39 LOG5[9468:4018143232]: Reading configuration from file
/etc/pkg/uucp/stunnel.conf
2010.04.04 15:40:39 LOG7[9468:4018143232]: Snagged 64 random bytes from
/dev/urandom
2010.04.04 15:40:39 LOG7[9468:4018143232]: RAND_status claims sufficient
entropy for the PRNG
2010.04.04 15:40:39 LOG7[9468:4018143232]: PRNG seeded successfully
2010.04.04 15:40:39 LOG7[9468:4018143232]: SSL context initialized for
service uucico
2010.04.04 15:40:39 LOG5[9468:4018143232]: Configuration successful
2010.04.04 15:40:39 LOG5[9468:4018143232]: No limit detected for the number
of clients
2010.04.04 15:40:39 LOG7[9468:4018143232]: FD=8 in non-blocking mode
2010.04.04 15:40:39 LOG7[9468:4018143232]: FD=9 in non-blocking mode
2010.04.04 15:40:39 LOG7[8731:4018143232]: No pid file being created
2010.04.04 15:40:39 LOG5[8731:4018143232]: stunnel 4.32 on sparc--netbsdelf
with OpenSSL 0.9.8e 23 Feb 2007
2010.04.04 15:40:39 LOG5[8731:4018143232]: Threading:PTHREAD SSL:ENGINE
Sockets:POLL,IPv6 Auth:LIBWRAP
-- stunnel just hangs there, uucico is not executed.
I'll take the issue to the stunnel-users list, and see what comes of it. As
usual, wip/stunnel3 just works.
hauke
--
"It's never straight up and down" (DEVO)
Home |
Main Index |
Thread Index |
Old Index