FreshPorts -- The Place For Ports If you buy from Amazon USA, please support us by using this link.
Follow us
Blog
Twitter

Port details
stunnel SSL encryption wrapper for standard network daemons
5.42,1 security on this many watch lists=74 search for ports that depend on this port An older version of this port was marked as vulnerable. Find issues related to this port Report an issue related to this port
Maintainer: zi@FreeBSD.org search for ports maintained by this maintainer
Port Added: unknown
License: GPLv2 GPLv3
The stunnel program is designed to work  as  SSL  encryption
wrapper between remote client and local (inetd-startable) or
remote server. The concept is that having non-SSL aware dae-
mons  running  on  your  system you can easily setup them to
communicate with clients over secure SSL channel.

stunnel can be used to add  SSL  functionality  to  commonly
used  inetd  daemons  like  POP-2,  POP-3  and  IMAP servers
without any changes in the programs' code.

WWW: https://www.stunnel.org/
SVNWeb : Homepage : PortsMon : pkg-plist

To install the port: cd /usr/ports/security/stunnel/ && make install clean
To add the package: pkg install stunnel

PKGNAME: stunnel

distinfo:

TIMESTAMP = 1500236367
SHA256 (stunnel-5.42.tar.gz) = 1b6a7aea5ca223990bc8bd621fb0846baa4278e1b3e00ff6eee279cb8e540fab
SIZE (stunnel-5.42.tar.gz) = 649496


NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.

Build dependencies:
  1. perl5>=5.24<5.25 : lang/perl5.24

This port is required by:

for Run * - deleted ports are only shown under the This port is required by section. It was harder to do for the Required section. Perhaps later...
Configuration Options
===> The following configuration options are available for stunnel-5.42,1:
     DOCS=on: Build and/or install documentation
     EXAMPLES=on: Build and/or install examples
     FIPS=off: Enable OpenSSL FIPS mode
     IPV6=on: IPv6 protocol support
     LIBWRAP=off: TCP wrapper support
====> Options available for the single THREAD: you have to select exactly one of them
     FORK=off: Use the fork(3) threading model
     PTHREAD=on: Use the pthread(3) threading model
     UCONTEXT=off: Use the ucontext(3) threading model
===> Use 'make config' to modify these settings

USES:
cpe libtool perl5 shebangfix ssl

pkg-message:
************************************************************
Don't forget to check out the FAQ at http://www.stunnel.org/
************************************************************

Master Sites:
  1. ftp://ftp.nluug.nl/pub/networking/stunnel/
  2. ftp://ftp.surfnet.nl/pub/networking/stunnel/
  3. ftp://stunnel.mirt.net/stunnel/
  4. http://distcache.FreeBSD.org/local-distfiles/zi/
  5. http://distcache.eu.FreeBSD.org/local-distfiles/zi/
  6. http://distcache.us-east.FreeBSD.org/local-distfiles/zi/
  7. http://distcache.us-west.FreeBSD.org/local-distfiles/zi/
  8. http://ftp.nluug.nl/pub/networking/stunnel/
  9. http://ftp.nluug.nl/pub/networking/stunnel/
  10. http://ftp.surfnet.nl/pub/networking/stunnel/
  11. http://mirrors.go-part.com/stunnel/
  12. http://mirrors.zerg.biz/stunnel/
  13. http://mirrors.zerg.biz/stunnel/
  14. http://stunnel.cybermirror.org/
  15. http://www.namesdir.com/mirrors/stunnel/
  16. https://blackened.zi0r.com/mirrors/
  17. https://mirrors.rit.edu/zi/
  18. https://www.stunnel.org/downloads/
  19. https://www.stunnel.org/downloads/beta/
Notes from UPDATING
These upgrade notes are taken from /usr/ports/UPDATING
  • 2010-09-20
    Affects: users of security/stunnel
    Author: roam@FreeBSD.org
    Reason: 
      In stunnel-4.34, the DH support is no longer configurable by the user,
      but always enabled when OpenSSL supports it instead.  This means that
      it will now most probably be enabled on the supported versions of FreeBSD.
      If this leads to problems with old SSL clients, I will look into making
      it configurable at build time again.
    
    

Number of commits found: 156 (showing only 56 on this page)

«  1 | 2 

Commit History - (may be incomplete: see SVNWeb link above for full details)
DateByDescription
15 Nov 2005 06:52:12
Original commit files touched by this commit  4.14
ade search for other commits by this committer
Mass-conversion to the USE_AUTOTOOLS New World Order.  The code present
in bsd.autotools.mk essentially makes this a no-op given that all the
old variables set a USE_AUTOTOOLS_COMPAT variable, which is parsed in
exactly the same way as USE_AUTOTOOLS itself.

Moreover, USE_AUTOTOOLS has already been extensively tested by the GNOME
team -- all GNOME 2.12.x ports use it.

Preliminary documentation can be found at:
        http://people.FreeBSD.org/~ade/autotools.txt

which is in the process of being SGMLized before introduction into the
Porters Handbook.

Light blue touch-paper.  Run.
03 Nov 2005 11:51:10
Original commit files touched by this commit  4.14
roam search for other commits by this committer
Update to stunnel 4.14, which is mostly a bugfix release.
Besides what's in the PR, also revert the pidfile location change to
preserve POLA and hier(7).

PR:             88436
Submitted by:   Vasil Dimov <vd@datamax.bg>
01 Nov 2005 00:18:04
Original commit files touched by this commit  4.13
roam search for other commits by this committer
Update to 4.13, which ought to fix the libc_r detection problem in
a short window of 5.x versions.

PR:             87839
Submitted by:   Vasil Dimov <vd@datamax.bg>
13 Jul 2005 08:41:58
Original commit files touched by this commit  4.11
roam search for other commits by this committer
Update to stunnel 4.11, which is deemed a stable release.
Remove our local patches for ucontext/pthread/fork model choice, since
this is handled by a configure argument now.
Note that ucontext is not supported on FreeBSD versions less than 5.0.

PR:             83245 (mostly)
Submitted by:   Vasil Dimov <vd@datamax.bg>
14 Jun 2005 09:07:12
Original commit files touched by this commit  4.10_3
roam search for other commits by this committer
OPTIONS'ify, but still leave WITH_STUNNEL_SSL_ENGINE out of it - it is
a bit too dangerous to leave out in the open.
14 Jun 2005 08:58:48
Original commit files touched by this commit  4.10_2
roam search for other commits by this committer
Fix the stunnel ucontext-related problems using a patch from the author,
Michael Trojnara[1].
Also, add the build-time WITH_FORK, WITH_PTHREAD, and WITH_UCONTEXT knobs
to control the stunnel threading model used, based on Vasil Dimov's PR's
with some modifications [2].
While I'm here, add in a <sys/types.h> inclusion that seems to be needed
for <ucontext.h> at least on FreeBSD 6.0/sparc64.

Reported by:    many
Pointy hat to:  roam (myself) for both not noticing this and then letting
                it linger for a while
Obtained from:  Michael Trojnara's BSD patch from
                <53594c631989fde6ca0bdb3435b93dfe@mirt.net> [1]
PR:             81289, 82202 [2]
Submitted by:   Vasil Dimov
05 Jun 2005 23:03:15
Original commit files touched by this commit  4.10_1
flz search for other commits by this committer
- Fix deinstall script when running in BATCH mode.

PR:             ports/67762
Submitted by:   Linus Sjoberg <lsjoberg@aland.net>
Approved by:    maintainer timeout (7 weeks)
12 May 2005 11:36:41
Original commit files touched by this commit  4.10
roam search for other commits by this committer
Update to 4.10, fixing the execvp() and pid file issues while I'm here.

PR:             79114, 79120, 80143, 80405
Submitted by:   Florian Hars <hars@bik-gmbh.de>,
                Jim Hatfield <jim.hatfield@insignia.com>,
                Vasil Dimov <vd@datamax.bg>,
                Vsevolod Stakhov <vsevolod@highsecure.ru>
12 Apr 2005 03:26:57
Original commit files touched by this commit  4.07
obrien search for other commits by this committer
At Kris's request, back out the MACHINE_ARCH spelling correction until
after 5.4-RELEASE.
11 Apr 2005 08:04:41
Original commit files touched by this commit  4.07
obrien search for other commits by this committer
Assist getting more ports working on AMD64 by obeying the
Ports Collection documentation and use 'ARCH' rather than 'MACHINE_ARCH'.
03 Jan 2005 09:54:20
Original commit files touched by this commit  4.07
roam search for other commits by this committer
Update stunnel to 4.07, which incorporates most of our fixes to 4.06
and also fixes a crash if a client connection is closed too early.

Approved by:    portmgr (krion)
30 Dec 2004 15:39:26
Original commit files touched by this commit  4.06_2
roam search for other commits by this committer
Okay then, purge the last reference to MySQL in the startup script...
30 Dec 2004 15:37:50
Original commit files touched by this commit  4.06_2
roam search for other commits by this committer
The last update for this year, I hope :)
Make stunnel use the rc_subr framework, allowing for much cleaner
startup and shutdown of multiple instances of stunnel.
30 Dec 2004 14:22:10
Original commit files touched by this commit  4.06_1
roam search for other commits by this committer
Fix a getnameinfo() out-of-memory error caused by passing a 20-character
buffer to hold a numeric IPv4/v6 address.  Of course, IPv6 addresses may
be a bit longer than 20 characters :)

A-ha! moment during:    discussion with the stunnel author
29 Dec 2004 12:28:55
Original commit files touched by this commit  4.06
roam search for other commits by this committer
Fix the build on FreeBSD versions around 5.2 when EAI_NODATA was
temporarily aliased to EAI_NONAME.
No PORTREVISION bump, since this is a no-op on earlier and later versions,
and it didn't build at all until now on the affected versions.

Reported by:    Bretislav Kubesa <bretislav.kubesa@centrum.cz>
27 Dec 2004 14:33:19
Original commit files touched by this commit  4.06
roam search for other commits by this committer
Update to stunnel-4.06.  In addition to the PR:
- enable the new IPv6 functionality when WITH_IPV6 is defined;
- at last move over to libtool-1.5 and get rid of the .la file;
- update the WITH_STUNNEL_SSL_ENGINE message to also mention FreeBSD 6.x;
- remove the obsolete sock_ioctlsocket() definition from patch-aa;
- fix a couple of getnameinfo(3)-related buglets;
- fix a poll(2)-related buglet: it seems FreeBSD insists (correctly) that
  INFTIM passed to poll(2) should be -1, not just any negative value.

PR:             75519 (somewhat)
Submitted by:   Dan Langille <dan@langille.org>
02 Sep 2004 15:46:15
Original commit files touched by this commit  4.05_1
roam search for other commits by this committer
Fix the bus error on startup in -CURRENT and 5.x-BETA.  It turns out
that the OpenSSL ENGINE code is, well, somewhat less than stellar,
especially in combo with malloc's 'j' option.  Even without it, though,
there are some problems that I don't have time to look into right now.

So, disable the OpenSSL ENGINE activation on FreeBSD 5.x, unless
the WITH_STUNNEL_SSL_ENGINE knob is turned on.  Also, while I'm here,
fix the CONFIGURE_TARGET so the GNU configure script does not complain
quite so loudly.  Bump PORTREVISION for the functionality change
(well, I guess you could say "not working" -> "working" is a functionality
change ;)
17 Jun 2004 09:35:23
Original commit files touched by this commit  4.05
roam search for other commits by this committer
BROKEN -> IGNORE, since this is a runtime error and the port itself builds
just fine.

Suggested by:   kris
17 Jun 2004 09:34:51
Original commit files touched by this commit  4.05
roam search for other commits by this committer
Use DOCSDIR.
11 Jun 2004 16:37:57
Original commit files touched by this commit  4.05
roam search for other commits by this committer
Mark broken on -CURRENT until I figure out why stunnel doesn't like
-CURRENT's OpenSSL.

Reported by:    dougb
03 Jun 2004 11:38:01
Original commit files touched by this commit  4.05
roam search for other commits by this committer
And hot on the heels of the distsite update, here's the promised update
to 4.05 :)
03 Jun 2004 10:48:32
Original commit files touched by this commit  4.04_2
roam search for other commits by this committer
Fix the distsites; an update to stunnel-4.05 is coming shortly, but still,
do this in the meantime.

PR:             67200
Submitted by:   Roman Neuhauser <neuhauser@chello.cz>
31 Mar 2004 03:12:58
Original commit files touched by this commit  4.04_2
trevor search for other commits by this committer
SIZEify (maintainer timeout)
30 Apr 2003 16:28:37
Original commit files touched by this commit  4.04_2
roam search for other commits by this committer
Brian Hatch updated his RSA blinding patch to only apply
the blinding when really needed.  However, the name of
the patch file was not changed, which may confuse FreeBSD
distfile mirrors.  So, host the patch file in my local
FreeBSD cluster space, changing the file's name.

Reported by:    Dan Langille <dan@langille.org>
23 Mar 2003 10:35:14
Original commit files touched by this commit  4.04_1
roam search for other commits by this committer
Add Brian Hatch's patch to enable RSA blinding on older OpenSSL versions.

Note: this patch is not needed for the 4.8-RELEASE ports tree, since
FreeBSD 4.8 will ship with a fixed OpenSSL version.  However, this patch
SHOULD be applied by anyone running stunnel with a version of OpenSSL
older than 0.9.7a, as reported by the 'openssl version' command.

Submitted by:   Brian Hatch <bri@stunnel.org>
19 Feb 2003 16:07:30
Original commit files touched by this commit  4.04
roam search for other commits by this committer
Remove pkg-comment files in my ports.
13 Jan 2003 13:26:03
Original commit files touched by this commit  4.04
roam search for other commits by this committer
Update to stunnel-4.04.

Independently submitted by:     Dan Langille <dan@langille.org>
09 Jan 2003 09:54:54
Original commit files touched by this commit  4.03
roam search for other commits by this committer
Update to 4.03.

'make cert' fix submitted by:   Krzysztof Stryjek <wtp@mud.pl>
27 Oct 2002 20:04:10
Original commit files touched by this commit  4.00
dinoex search for other commits by this committer
drop dummy certificate from package
27 Oct 2002 16:02:35
Original commit files touched by this commit  4.00
dinoex search for other commits by this committer
remove IS_INTERACTIVE again.
No response from maintainer since 30.09.2002
20 Sep 2002 19:55:07
Original commit files touched by this commit  4.00
roam search for other commits by this committer
Apply a blessed +3 magic wand of autotools protection; a rogue run of
autoconf or automake over our local patches can ruin your whole day.
This rarely, if ever, affected the vpopmail ports, causing mysterious
failures at install time, but inevitably killed the stunnel build if
automake-1.5 happened to be installed.

Reported by:    Dan Langille <dan@langille.org> for stunnel,
                Sitchin Zech <mailsagan@yahoo.com> for vpopmail
20 Sep 2002 09:29:11
Original commit files touched by this commit  4.00
roam search for other commits by this committer
Update to stunnel-4.00.

*** WARNING WARNING WARNING ***
The stunnel invocation has changed!  The program no longer accepts
command-line options, but is controlled by a config file instead.
Please refer to the stunnel(8) manual page for more information.

PR:             42249
Submitted by:   Dan Langille <dan@langille.org>, lioux
16 Sep 2002 12:02:35
Original commit files touched by this commit  3.22
roam search for other commits by this committer
Take over maintainership; I use this a lot.
16 Sep 2002 11:26:51
Original commit files touched by this commit  3.22
alane search for other commits by this committer
Maintainer relenquishing ports.

PR:             42829
Submitted by:   Martti Kuparinen <martti.kuparinen@iki.fi>
Approved by:    maintainer
15 Sep 2002 12:03:06
Original commit files touched by this commit  3.22
dinoex search for other commits by this committer
Unbreak Package-Build, removed IS_INTERACTIVE
05 Jan 2002 14:49:41
files touched by this commit
dinoex search for other commits by this committer
PORT UPDATE : security/stunnel 3.21c -> 3.22    
30 Nov 2001 07:22:56
files touched by this commit
vanilla search for other commits by this committer
upgrade to 3.21c    
07 Nov 2001 11:01:38
files touched by this commit
roam search for other commits by this committer
Update to 3.21b, fixing a Makefile bogon and a file descriptor leak.   Add a new
knob, PEM_DIR, to specify the path to install the certificate   generated during
the stunnel build, and later, the one generated using   the 'cert' target of the
port Makefile.    
01 Nov 2001 08:28:38
files touched by this commit
roam search for other commits by this committer
Update to 3.21.   Change USE_AUTOCONF to GNU_CONFIGURE; there have been no
configure.in   patches for some time now.    
06 Sep 2001 12:47:58
files touched by this commit
roam search for other commits by this committer
Update the checksum after the distfile was rerolled.   No changes in the
distfile.    
18 Aug 2001 08:31:00
files touched by this commit
mharo search for other commits by this committer
Update the stunnel package to the latest version.    
10 Aug 2001 15:21:32
files touched by this commit
roam search for other commits by this committer
Update to 3.19.    
02 Aug 2001 20:04:01
files touched by this commit
lioux search for other commits by this committer
o Update to 3.18   	* MAX_CLIENTS is calculated based on FD_SETSIZE, now.   	*
Problems with closing SSL in transfer() fixed.   	* -I option to bind a static
local IP address added.   	* Debug output of info_callback redesigned.   o
Reorder MASTER_SITES    
30 Jul 2001 10:14:13
files touched by this commit
kris search for other commits by this committer
Update to stunnel 3.17    
23 Jul 2001 09:39:58
files touched by this commit
roam search for other commits by this committer
Update to 3.16.    
16 Jul 2001 16:42:15
files touched by this commit
kevlo search for other commits by this committer
Update to version 3.15    
26 Feb 2001 03:39:30
files touched by this commit
steve search for other commits by this committer
Use non-blocking I/O by default.    
22 Feb 2001 13:39:59
files touched by this commit
roam search for other commits by this committer
Update to 3.14.    
25 Jan 2001 14:49:31
files touched by this commit
ijliao search for other commits by this committer
upgrade to 3.13 and change master site    
25 Jan 2001 14:37:54
files touched by this commit
ijliao search for other commits by this committer
upgrade and change maintainer email    
02 Jan 2001 15:01:41
files touched by this commit
roam search for other commits by this committer
Update to 3.11 and mark as interactive (prompts for information while  
generating a certificate).    
20 Dec 2000 12:59:13
files touched by this commit
roam search for other commits by this committer
Update to 3.10.    
20 Dec 2000 05:56:08
files touched by this commit
kris search for other commits by this committer
Upgrade to stunnel 3.9 to fix security vulnerabilities.    
08 Oct 2000 07:30:58
files touched by this commit
asami search for other commits by this committer
Convert category security to new layout.  
22 Sep 2000 02:59:06
files touched by this commit
kris search for other commits by this committer
Update all ports using OpenSSL and RSA to work without rsaref since   it is no
longer required. Apologies to the various maintainers whom I   did not yet hear
back from, but the ports freeze is coming up in a few   hours and I will be
verifying all of these ports on a 4.1 machine   myself to catch any problems.   
07 Jul 2000 20:27:29
files touched by this commit
steve search for other commits by this committer
Update to version 3.8.4.    

Number of commits found: 156 (showing only 56 on this page)

«  1 | 2 

Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
Issues
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
chromiumOct 21
arjOct 19
cactiOct 19
mariadb100-serverOct 19
mariadb101-serverOct 19
mariadb102-serverOct 19
mariadb55-serverOct 19
mysql55-serverOct 19
mysql56-serverOct 19
mysql57-serverOct 19
percona55-serverOct 19
percona56-serverOct 19
percona57-serverOct 19
krb5Oct 18
krb5-113Oct 18

23 vulnerabilities affecting 99 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds

Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 31610
Broken 153
Deprecated 79
Ignore 422
Forbidden 0
Restricted 175
No CDROM 78
Vulnerable 58
Expired 16
Set to expire 72
Interactive 0
new 24 hours 7
new 48 hours8
new 7 days21
new fortnight50
new month432

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2017 Dan Langille. All rights reserved.