Solved

stunnel expiring certificate

Posted on 2006-06-17
6
859 Views
Last Modified: 2008-02-26
I'm  running SuSE SLES 8 using an stunnel with a certificate about to expire:

stunnel -p /usr/share/ssl/misc/mkcert/lnxcssl1.pem -d 480 -r lnxcbc01:439

I need to setup an stunnel  with both the soon to be expired ssl certificate and the the new certificate,
so that we can wean the applications that use this over the course of the next week.

From what I remember I concatenated the key_file + verisign_cert_file to make my pem file. Verisign sent me a new lnxcssl1.cer file
and i did a  cat lnxcssl1.key lnxcssl1.cert > lnxcssl1.pem to test out the the new certificate, I then created a new stunnel to
this certificate and it appeared to work. How do I set it up so that the groups can use both the expiring and new certifcate.
0
Comment
Question by:galupo
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
6 Comments
 
LVL 51

Accepted Solution

by:
ahoffmann earned 500 total points
ID: 16930300
you can only use one cert, IMO
0
 
LVL 51

Expert Comment

by:ahoffmann
ID: 17163161
hmm, I guess that my suggestion was correct. You can only have one cert per process, or do I miss something?
I'd vote for PAQ with 0 points
0
 
LVL 27

Expert Comment

by:Tolomir
ID: 17163179
@ ahoffmann: agreed to paq it.

Tolomir
0

Featured Post

To Patch or not to Patch? That is the question!

Don't get caught out like thousands of others around the world in the recent Ransomware Fiasco!
Discuss..
- Why it's not a good idea to wait before Patching
- Sensible approaches to Patching discussed
- Add your feedback, comments and suggestions

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Most MSPs worth their salt are already offering cybersecurity to their customers. But cybersecurity as a service is wide encompassing and can mean many things.  So where are MSPs falling in this spectrum?
Many of you may be aware of the recent Google Docs scam emails that have been floating around coming from various people that you know. Here's a guide on identifying How To Identify the Scam Email You will see an email from someone you’ve had co…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

739 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question