| delorie.com/archives/browse.cgi | search |
| X-Recipient: | archive-cygwin AT delorie DOT com |
| DomainKey-Signature: | a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id |
| :list-unsubscribe:list-subscribe:list-archive:list-post | |
| :list-help:sender:reply-to:from:to:subject:date:message-id | |
| :mime-version:content-type:content-transfer-encoding; q=dns; s= | |
| default; b=Zor8ydjKykghWCklUrann2ESbJgMQcUMdOoJ0ZHGqVApqfESsYdxx | |
| tTG7P+TNTtBFEM5LPhdudxvc1NpC63Ht5J5GtkoAw3Gn3vW3UgT/7EkQLr1t2kss | |
| Z07YBjHZ7g4UcuHNQKnZs6oQks9xMPsETGc+hqk9xaxto9t4MDViW4= | |
| DKIM-Signature: | v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id |
| :list-unsubscribe:list-subscribe:list-archive:list-post | |
| :list-help:sender:reply-to:from:to:subject:date:message-id | |
| :mime-version:content-type:content-transfer-encoding; s=default; | |
| bh=X7SvHZXESodcSnemMbB1q1qcSVU=; b=Yq66G3qbiRP2kjkpWZmxzt78u7qg | |
| VOFG7p+RRvf9HrMX8laIE//5Pi/9ybSp9Q1nTDva5mzyZnN1+6rCgJ/+Q1/VV4/9 | |
| k5KoYHXzO1yZ54a5VLknYFRq175JTPNnT/Su5zGk8gsKaHldBcDa2ZpbSrB61O++ | |
| TZFbe/G8Utc37K8= | |
| Mailing-List: | contact cygwin-help AT cygwin DOT com; run by ezmlm |
| List-Id: | <cygwin.cygwin.com> |
| List-Subscribe: | <mailto:cygwin-subscribe AT cygwin DOT com> |
| List-Archive: | <http://sourceware.org/ml/cygwin/> |
| List-Post: | <mailto:cygwin AT cygwin DOT com> |
| List-Help: | <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs> |
| Sender: | cygwin-owner AT cygwin DOT com |
| Mail-Followup-To: | cygwin AT cygwin DOT com |
| Delivered-To: | mailing list cygwin AT cygwin DOT com |
| Authentication-Results: | sourceware.org; auth=none |
| X-Virus-Found: | No |
| X-HELO: | localhost.localdomain |
| Reply-To: | cygwin AT cygwin DOT com |
| Authentication-Results: | sourceware.org; auth=none |
| X-Virus-Found: | No |
| X-Spam-SWARE-Status: | No, score=0.1 required=5.0 tests=AWL,BAYES_05,RCVD_IN_DNSWL_NONE,UNSUBSCRIBE_BODY autolearn=no version=3.3.2 |
| From: | Andrew Schulman <schulman DOT andrew AT epa DOT gov> |
| To: | cygwin AT cygwin DOT com |
| Subject: | [ANNOUNCEMENT] Updated: stunnel 5.06-1 [SECURITY] |
| Date: | Fri, 17 Oct 2014 20:51:48 -0400 |
| Message-Id: | <announce.a4e34a93cv52ob4ldfjlopcaqslarqnntm@4ax.com> |
| MIME-Version: | 1.0 |
| X-Archive: | encrypt |
| X-MIME-Autoconverted: | from quoted-printable to 8bit by delorie.com id s9I94kpW032640 |
A new version of stunnel, 5.06-1, is available in the Cygwin distribution.
This is a new upstream release.
This is a security update of stunnel, mainly AFAICT because it now disables
SSLv2 and SSLv3 by default. Please read the annnouncement at
http://www.stunnel.org/sdf_ChangeLog.html. Note though that in Cygwin
stunnel doesn't provide a default config file, only a sample
(/etc/stunnel/stunnel.conf-sample) that you can take and adapt for your
use. So in other words, it's still up to you to disable SSLv2 and SSLv3 in
your services. If you haven't done that yet, you should, right away.
stunnel has also been rebuilt against OpenSSL 1.0.1j, which now includes
support for TLS_FALLBACK_SCSV. That and disabling SSLv2 and SSLv3 together
address the recently announced POODLE vulnerability in SSL.
stunnel is a program that allows you to encrypt arbitrary TCP connections
inside TLS (Transport Layer Security, formerly known as Secure Sockets
Layer (SSL)). stunnel can allow you to secure non-TLS-aware daemons and
protocols (like POP, IMAP, LDAP, etc) by having stunnel provide the
encryption, requiring no changes to the daemon's code.
Andrew E. Schulman
*******************************************************************
To update your installation, click on the "Install Cygwin now" link on
the http://cygwin.com/ web page. This downloads setup.exe to your
system. Then, run setup and answer all of the questions.
*** CYGWIN-ANNOUNCE UNSUBSCRIBE INFO ***
If you want to unsubscribe from the cygwin-announce mailing list, look
at the "List-Unsubscribe: " tag in the email header of this message.
Send email to the address specified there. It will be in the format:
cygwin-announce-unsubscribe-you=yourdomain.com_at_cygwin.com
If you need more information on unsubscribing, start reading here:
http://cygwin.com/lists.html#subscribe-unsubscribe
Please read *all* of the information on unsubscribing that is available
starting at this URL.
--
Problem reports: http://cygwin.com/problems.html
FAQ: http://cygwin.com/faq/
Documentation: http://cygwin.com/docs.html
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
| webmaster | delorie software privacy |
| Copyright © 2019 by DJ Delorie | Updated Jul 2019 |