FreshPorts -- The Place For Ports If you buy from Amazon USA, please support us by using this link.
Follow us
Blog
Twitter

We also have a status page: https://freshports.wordpress.com/

Port details
stunnel SSL encryption wrapper for standard network daemons
5.44,1 security on this many watch lists=74 search for ports that depend on this port An older version of this port was marked as vulnerable. Find issues related to this port Report an issue related to this port
Maintainer: zi@FreeBSD.org search for ports maintained by this maintainer
Port Added: unknown
License: GPLv2 GPLv3
The stunnel program is designed to work  as  SSL  encryption
wrapper between remote client and local (inetd-startable) or
remote server. The concept is that having non-SSL aware dae-
mons  running  on  your  system you can easily setup them to
communicate with clients over secure SSL channel.

stunnel can be used to add  SSL  functionality  to  commonly
used  inetd  daemons  like  POP-2,  POP-3  and  IMAP servers
without any changes in the programs' code.

WWW: https://www.stunnel.org/
SVNWeb : Homepage : PortsMon
    Pseudo-pkg-plist information, but much better, from make generate-plist
    Expand this list (45 items)
  1. /usr/local/share/licenses/stunnel-5.44,1/catalog.mk
  2. /usr/local/share/licenses/stunnel-5.44,1/LICENSE
  3. /usr/local/share/licenses/stunnel-5.44,1/GPLv2
  4. /usr/local/share/licenses/stunnel-5.44,1/GPLv3
  5. bin/stunnel
  6. bin/stunnel3
  7. etc/stunnel/stunnel.conf-sample
  8. etc/stunnel/conf.d/pid.conf
  9. lib/stunnel/libstunnel.a
  10. lib/stunnel/libstunnel.so
  11. man/man8/stunnel.8.gz
  12. man/man8/stunnel.pl.8.gz
  13. share/doc/stunnel/stunnel.html
  14. share/doc/stunnel/stunnel.pl.html
  15. share/examples/stunnel/ca.html
  16. share/examples/stunnel/ca.pl
  17. share/examples/stunnel/importCA.html
  18. share/examples/stunnel/importCA.sh
  19. share/examples/stunnel/script.sh
  20. share/examples/stunnel/stunnel.init
  21. share/examples/stunnel/stunnel.service
  22. share/examples/stunnel/stunnel.spec
  23. @comment share/examples/stunnel/stunnel.logrotate
  24. @comment share/examples/stunnel/stunnel.rh.init
  25. @dir share/examples/stunnel
  26. share/doc/stunnel/AUTHORS
  27. share/doc/stunnel/BUGS
  28. share/doc/stunnel/ChangeLog
  29. share/doc/stunnel/COPYING
  30. share/doc/stunnel/COPYRIGHT.GPL
  31. share/doc/stunnel/CREDITS
  32. share/doc/stunnel/INSTALL
  33. share/doc/stunnel/INSTALL.FIPS
  34. share/doc/stunnel/INSTALL.W32
  35. share/doc/stunnel/INSTALL.WCE
  36. share/doc/stunnel/PORTS
  37. share/doc/stunnel/README
  38. share/doc/stunnel/TODO
  39. @dir share/doc/stunnel
  40. @dir lib/stunnel
  41. @dir etc/stunnel
  42. @dir etc/stunnel/conf.d
  43. @unexec if [ -d %D/etc/stunnel ]; then echo "If you are permanently removing this port, you should run ``rm -rf %D/etc/stunnel`` to remove any configuration files left."; fi
  44. @postexec /sbin/ldconfig -m /usr/local/lib
  45. @postunexec /sbin/ldconfig -R
  46. Collapse this list.

To install the port: cd /usr/ports/security/stunnel/ && make install clean
To add the package: pkg install stunnel

PKGNAME: stunnel

distinfo:

TIMESTAMP = 1511735657
SHA256 (stunnel-5.44.tar.gz) = 990a325dbb47d77d88772dd02fbbd27d91b1fea3ece76c9ff4461eca93f12299
SIZE (stunnel-5.44.tar.gz) = 699117


NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.

Build dependencies:
  1. perl5>=5.24<5.25 : lang/perl5.24

This port is required by:

for Run * - deleted ports are only shown under the This port is required by section. It was harder to do for the Required section. Perhaps later...
Configuration Options
===> The following configuration options are available for stunnel-5.44,1:
     DOCS=on: Build and/or install documentation
     EXAMPLES=on: Build and/or install examples
     FIPS=off: Enable OpenSSL FIPS mode
     IPV6=on: IPv6 protocol support
     LIBWRAP=off: TCP wrapper support
====> Options available for the single THREAD: you have to select exactly one of them
     FORK=off: Use the fork(3) threading model
     PTHREAD=on: Use the pthread(3) threading model
     UCONTEXT=off: Use the ucontext(3) threading model
===> Use 'make config' to modify these settings

USES:
cpe libtool perl5 shebangfix ssl

pkg-message:
************************************************************
Don't forget to check out the FAQ at http://www.stunnel.org/
************************************************************

Master Sites:
  1. ftp://ftp.nluug.nl/pub/networking/stunnel/
  2. ftp://ftp.surfnet.nl/pub/networking/stunnel/
  3. ftp://stunnel.mirt.net/stunnel/
  4. http://distcache.FreeBSD.org/local-distfiles/zi/
  5. http://distcache.eu.FreeBSD.org/local-distfiles/zi/
  6. http://distcache.us-east.FreeBSD.org/local-distfiles/zi/
  7. http://distcache.us-west.FreeBSD.org/local-distfiles/zi/
  8. http://ftp.nluug.nl/pub/networking/stunnel/
  9. http://ftp.nluug.nl/pub/networking/stunnel/
  10. http://ftp.surfnet.nl/pub/networking/stunnel/
  11. http://mirrors.go-part.com/stunnel/
  12. http://mirrors.zerg.biz/stunnel/
  13. http://mirrors.zerg.biz/stunnel/
  14. http://stunnel.cybermirror.org/
  15. http://www.namesdir.com/mirrors/stunnel/
  16. https://blackened.zi0r.com/mirrors/
  17. https://mirrors.rit.edu/zi/
  18. https://www.stunnel.org/downloads/
  19. https://www.stunnel.org/downloads/beta/
Notes from UPDATING
These upgrade notes are taken from /usr/ports/UPDATING
  • 2010-09-20
    Affects: users of security/stunnel
    Author: roam@FreeBSD.org
    Reason: 
      In stunnel-4.34, the DH support is no longer configurable by the user,
      but always enabled when OpenSSL supports it instead.  This means that
      it will now most probably be enabled on the supported versions of FreeBSD.
      If this leads to problems with old SSL clients, I will look into making
      it configurable at build time again.
    
    

Number of commits found: 158 (showing only 58 on this page)

«  1 | 2 

Commit History - (may be incomplete: see SVNWeb link above for full details)
DateByDescription
31 Jan 2006 09:11:39
Original commit files touched by this commit  4.14_1
roam search for other commits by this committer
Catch up with stunnel's tools/Makefile to make the port's "make cert"
target actually work again.
Follow the upstream author's idea of keeping all stunnel-related
configuration files into ${PREFIX}/etc/stunnel/ - now "make cert" also
installs the certificate there instead of ${PREFIX}/etc/.
Bump PORTREVISION and add a note to UPDATING for the certificate
location change.

PR:             91991
Reported by:    Jiri Pridal <jiri.pridal@firebrno.cz>
24 Jan 2006 01:03:33
Original commit files touched by this commit  4.14
edwin search for other commits by this committer
SHA256ify

Approved by: krion@
15 Nov 2005 06:52:12
Original commit files touched by this commit  4.14
ade search for other commits by this committer
Mass-conversion to the USE_AUTOTOOLS New World Order.  The code present
in bsd.autotools.mk essentially makes this a no-op given that all the
old variables set a USE_AUTOTOOLS_COMPAT variable, which is parsed in
exactly the same way as USE_AUTOTOOLS itself.

Moreover, USE_AUTOTOOLS has already been extensively tested by the GNOME
team -- all GNOME 2.12.x ports use it.

Preliminary documentation can be found at:
        http://people.FreeBSD.org/~ade/autotools.txt

which is in the process of being SGMLized before introduction into the
Porters Handbook.

Light blue touch-paper.  Run.
03 Nov 2005 11:51:10
Original commit files touched by this commit  4.14
roam search for other commits by this committer
Update to stunnel 4.14, which is mostly a bugfix release.
Besides what's in the PR, also revert the pidfile location change to
preserve POLA and hier(7).

PR:             88436
Submitted by:   Vasil Dimov <vd@datamax.bg>
01 Nov 2005 00:18:04
Original commit files touched by this commit  4.13
roam search for other commits by this committer
Update to 4.13, which ought to fix the libc_r detection problem in
a short window of 5.x versions.

PR:             87839
Submitted by:   Vasil Dimov <vd@datamax.bg>
13 Jul 2005 08:41:58
Original commit files touched by this commit  4.11
roam search for other commits by this committer
Update to stunnel 4.11, which is deemed a stable release.
Remove our local patches for ucontext/pthread/fork model choice, since
this is handled by a configure argument now.
Note that ucontext is not supported on FreeBSD versions less than 5.0.

PR:             83245 (mostly)
Submitted by:   Vasil Dimov <vd@datamax.bg>
14 Jun 2005 09:07:12
Original commit files touched by this commit  4.10_3
roam search for other commits by this committer
OPTIONS'ify, but still leave WITH_STUNNEL_SSL_ENGINE out of it - it is
a bit too dangerous to leave out in the open.
14 Jun 2005 08:58:48
Original commit files touched by this commit  4.10_2
roam search for other commits by this committer
Fix the stunnel ucontext-related problems using a patch from the author,
Michael Trojnara[1].
Also, add the build-time WITH_FORK, WITH_PTHREAD, and WITH_UCONTEXT knobs
to control the stunnel threading model used, based on Vasil Dimov's PR's
with some modifications [2].
While I'm here, add in a <sys/types.h> inclusion that seems to be needed
for <ucontext.h> at least on FreeBSD 6.0/sparc64.

Reported by:    many
Pointy hat to:  roam (myself) for both not noticing this and then letting
                it linger for a while
Obtained from:  Michael Trojnara's BSD patch from
                <53594c631989fde6ca0bdb3435b93dfe@mirt.net> [1]
PR:             81289, 82202 [2]
Submitted by:   Vasil Dimov
05 Jun 2005 23:03:15
Original commit files touched by this commit  4.10_1
flz search for other commits by this committer
- Fix deinstall script when running in BATCH mode.

PR:             ports/67762
Submitted by:   Linus Sjoberg <lsjoberg@aland.net>
Approved by:    maintainer timeout (7 weeks)
12 May 2005 11:36:41
Original commit files touched by this commit  4.10
roam search for other commits by this committer
Update to 4.10, fixing the execvp() and pid file issues while I'm here.

PR:             79114, 79120, 80143, 80405
Submitted by:   Florian Hars <hars@bik-gmbh.de>,
                Jim Hatfield <jim.hatfield@insignia.com>,
                Vasil Dimov <vd@datamax.bg>,
                Vsevolod Stakhov <vsevolod@highsecure.ru>
12 Apr 2005 03:26:57
Original commit files touched by this commit  4.07
obrien search for other commits by this committer
At Kris's request, back out the MACHINE_ARCH spelling correction until
after 5.4-RELEASE.
11 Apr 2005 08:04:41
Original commit files touched by this commit  4.07
obrien search for other commits by this committer
Assist getting more ports working on AMD64 by obeying the
Ports Collection documentation and use 'ARCH' rather than 'MACHINE_ARCH'.
03 Jan 2005 09:54:20
Original commit files touched by this commit  4.07
roam search for other commits by this committer
Update stunnel to 4.07, which incorporates most of our fixes to 4.06
and also fixes a crash if a client connection is closed too early.

Approved by:    portmgr (krion)
30 Dec 2004 15:39:26
Original commit files touched by this commit  4.06_2
roam search for other commits by this committer
Okay then, purge the last reference to MySQL in the startup script...
30 Dec 2004 15:37:50
Original commit files touched by this commit  4.06_2
roam search for other commits by this committer
The last update for this year, I hope :)
Make stunnel use the rc_subr framework, allowing for much cleaner
startup and shutdown of multiple instances of stunnel.
30 Dec 2004 14:22:10
Original commit files touched by this commit  4.06_1
roam search for other commits by this committer
Fix a getnameinfo() out-of-memory error caused by passing a 20-character
buffer to hold a numeric IPv4/v6 address.  Of course, IPv6 addresses may
be a bit longer than 20 characters :)

A-ha! moment during:    discussion with the stunnel author
29 Dec 2004 12:28:55
Original commit files touched by this commit  4.06
roam search for other commits by this committer
Fix the build on FreeBSD versions around 5.2 when EAI_NODATA was
temporarily aliased to EAI_NONAME.
No PORTREVISION bump, since this is a no-op on earlier and later versions,
and it didn't build at all until now on the affected versions.

Reported by:    Bretislav Kubesa <bretislav.kubesa@centrum.cz>
27 Dec 2004 14:33:19
Original commit files touched by this commit  4.06
roam search for other commits by this committer
Update to stunnel-4.06.  In addition to the PR:
- enable the new IPv6 functionality when WITH_IPV6 is defined;
- at last move over to libtool-1.5 and get rid of the .la file;
- update the WITH_STUNNEL_SSL_ENGINE message to also mention FreeBSD 6.x;
- remove the obsolete sock_ioctlsocket() definition from patch-aa;
- fix a couple of getnameinfo(3)-related buglets;
- fix a poll(2)-related buglet: it seems FreeBSD insists (correctly) that
  INFTIM passed to poll(2) should be -1, not just any negative value.

PR:             75519 (somewhat)
Submitted by:   Dan Langille <dan@langille.org>
02 Sep 2004 15:46:15
Original commit files touched by this commit  4.05_1
roam search for other commits by this committer
Fix the bus error on startup in -CURRENT and 5.x-BETA.  It turns out
that the OpenSSL ENGINE code is, well, somewhat less than stellar,
especially in combo with malloc's 'j' option.  Even without it, though,
there are some problems that I don't have time to look into right now.

So, disable the OpenSSL ENGINE activation on FreeBSD 5.x, unless
the WITH_STUNNEL_SSL_ENGINE knob is turned on.  Also, while I'm here,
fix the CONFIGURE_TARGET so the GNU configure script does not complain
quite so loudly.  Bump PORTREVISION for the functionality change
(well, I guess you could say "not working" -> "working" is a functionality
change ;)
17 Jun 2004 09:35:23
Original commit files touched by this commit  4.05
roam search for other commits by this committer
BROKEN -> IGNORE, since this is a runtime error and the port itself builds
just fine.

Suggested by:   kris
17 Jun 2004 09:34:51
Original commit files touched by this commit  4.05
roam search for other commits by this committer
Use DOCSDIR.
11 Jun 2004 16:37:57
Original commit files touched by this commit  4.05
roam search for other commits by this committer
Mark broken on -CURRENT until I figure out why stunnel doesn't like
-CURRENT's OpenSSL.

Reported by:    dougb
03 Jun 2004 11:38:01
Original commit files touched by this commit  4.05
roam search for other commits by this committer
And hot on the heels of the distsite update, here's the promised update
to 4.05 :)
03 Jun 2004 10:48:32
Original commit files touched by this commit  4.04_2
roam search for other commits by this committer
Fix the distsites; an update to stunnel-4.05 is coming shortly, but still,
do this in the meantime.

PR:             67200
Submitted by:   Roman Neuhauser <neuhauser@chello.cz>
31 Mar 2004 03:12:58
Original commit files touched by this commit  4.04_2
trevor search for other commits by this committer
SIZEify (maintainer timeout)
30 Apr 2003 16:28:37
Original commit files touched by this commit  4.04_2
roam search for other commits by this committer
Brian Hatch updated his RSA blinding patch to only apply
the blinding when really needed.  However, the name of
the patch file was not changed, which may confuse FreeBSD
distfile mirrors.  So, host the patch file in my local
FreeBSD cluster space, changing the file's name.

Reported by:    Dan Langille <dan@langille.org>
23 Mar 2003 10:35:14
Original commit files touched by this commit  4.04_1
roam search for other commits by this committer
Add Brian Hatch's patch to enable RSA blinding on older OpenSSL versions.

Note: this patch is not needed for the 4.8-RELEASE ports tree, since
FreeBSD 4.8 will ship with a fixed OpenSSL version.  However, this patch
SHOULD be applied by anyone running stunnel with a version of OpenSSL
older than 0.9.7a, as reported by the 'openssl version' command.

Submitted by:   Brian Hatch <bri@stunnel.org>
19 Feb 2003 16:07:30
Original commit files touched by this commit  4.04
roam search for other commits by this committer
Remove pkg-comment files in my ports.
13 Jan 2003 13:26:03
Original commit files touched by this commit  4.04
roam search for other commits by this committer
Update to stunnel-4.04.

Independently submitted by:     Dan Langille <dan@langille.org>
09 Jan 2003 09:54:54
Original commit files touched by this commit  4.03
roam search for other commits by this committer
Update to 4.03.

'make cert' fix submitted by:   Krzysztof Stryjek <wtp@mud.pl>
27 Oct 2002 20:04:10
Original commit files touched by this commit  4.00
dinoex search for other commits by this committer
drop dummy certificate from package
27 Oct 2002 16:02:35
Original commit files touched by this commit  4.00
dinoex search for other commits by this committer
remove IS_INTERACTIVE again.
No response from maintainer since 30.09.2002
20 Sep 2002 19:55:07
Original commit files touched by this commit  4.00
roam search for other commits by this committer
Apply a blessed +3 magic wand of autotools protection; a rogue run of
autoconf or automake over our local patches can ruin your whole day.
This rarely, if ever, affected the vpopmail ports, causing mysterious
failures at install time, but inevitably killed the stunnel build if
automake-1.5 happened to be installed.

Reported by:    Dan Langille <dan@langille.org> for stunnel,
                Sitchin Zech <mailsagan@yahoo.com> for vpopmail
20 Sep 2002 09:29:11
Original commit files touched by this commit  4.00
roam search for other commits by this committer
Update to stunnel-4.00.

*** WARNING WARNING WARNING ***
The stunnel invocation has changed!  The program no longer accepts
command-line options, but is controlled by a config file instead.
Please refer to the stunnel(8) manual page for more information.

PR:             42249
Submitted by:   Dan Langille <dan@langille.org>, lioux
16 Sep 2002 12:02:35
Original commit files touched by this commit  3.22
roam search for other commits by this committer
Take over maintainership; I use this a lot.
16 Sep 2002 11:26:51
Original commit files touched by this commit  3.22
alane search for other commits by this committer
Maintainer relenquishing ports.

PR:             42829
Submitted by:   Martti Kuparinen <martti.kuparinen@iki.fi>
Approved by:    maintainer
15 Sep 2002 12:03:06
Original commit files touched by this commit  3.22
dinoex search for other commits by this committer
Unbreak Package-Build, removed IS_INTERACTIVE
05 Jan 2002 14:49:41
Original commit files touched by this commit
dinoex search for other commits by this committer
PORT UPDATE : security/stunnel 3.21c -> 3.22    
30 Nov 2001 07:22:56
Original commit files touched by this commit
vanilla search for other commits by this committer
upgrade to 3.21c    
07 Nov 2001 11:01:38
Original commit files touched by this commit
roam search for other commits by this committer
Update to 3.21b, fixing a Makefile bogon and a file descriptor leak.   Add a new
knob, PEM_DIR, to specify the path to install the certificate   generated during
the stunnel build, and later, the one generated using   the 'cert' target of the
port Makefile.    
01 Nov 2001 08:28:38
Original commit files touched by this commit
roam search for other commits by this committer
Update to 3.21.   Change USE_AUTOCONF to GNU_CONFIGURE; there have been no
configure.in   patches for some time now.    
06 Sep 2001 12:47:58
Original commit files touched by this commit
roam search for other commits by this committer
Update the checksum after the distfile was rerolled.   No changes in the
distfile.    
18 Aug 2001 08:31:00
Original commit files touched by this commit
mharo search for other commits by this committer
Update the stunnel package to the latest version.    
10 Aug 2001 15:21:32
Original commit files touched by this commit
roam search for other commits by this committer
Update to 3.19.    
02 Aug 2001 20:04:01
Original commit files touched by this commit
lioux search for other commits by this committer
o Update to 3.18   	* MAX_CLIENTS is calculated based on FD_SETSIZE, now.   	*
Problems with closing SSL in transfer() fixed.   	* -I option to bind a static
local IP address added.   	* Debug output of info_callback redesigned.   o
Reorder MASTER_SITES    
30 Jul 2001 10:14:13
Original commit files touched by this commit
kris search for other commits by this committer
Update to stunnel 3.17    
23 Jul 2001 09:39:58
Original commit files touched by this commit
roam search for other commits by this committer
Update to 3.16.    
16 Jul 2001 16:42:15
Original commit files touched by this commit
kevlo search for other commits by this committer
Update to version 3.15    
26 Feb 2001 03:39:30
Original commit files touched by this commit
steve search for other commits by this committer
Use non-blocking I/O by default.    
22 Feb 2001 13:39:59
Original commit files touched by this commit
roam search for other commits by this committer
Update to 3.14.    
25 Jan 2001 14:49:31
Original commit files touched by this commit
ijliao search for other commits by this committer
upgrade to 3.13 and change master site    
25 Jan 2001 14:37:54
Original commit files touched by this commit
ijliao search for other commits by this committer
upgrade and change maintainer email    
02 Jan 2001 15:01:41
Original commit files touched by this commit
roam search for other commits by this committer
Update to 3.11 and mark as interactive (prompts for information while  
generating a certificate).    
20 Dec 2000 12:59:13
Original commit files touched by this commit
roam search for other commits by this committer
Update to 3.10.    
20 Dec 2000 05:56:08
Original commit files touched by this commit
kris search for other commits by this committer
Upgrade to stunnel 3.9 to fix security vulnerabilities.    
08 Oct 2000 07:30:58
Original commit files touched by this commit
asami search for other commits by this committer
Convert category security to new layout.  
22 Sep 2000 02:59:06
Original commit files touched by this commit
kris search for other commits by this committer
Update all ports using OpenSSL and RSA to work without rsaref since   it is no
longer required. Apologies to the various maintainers whom I   did not yet hear
back from, but the ports freeze is coming up in a few   hours and I will be
verifying all of these ports on a 4.1 machine   myself to catch any problems.   
07 Jul 2000 20:27:29
Original commit files touched by this commit
steve search for other commits by this committer
Update to version 3.8.4.    

Number of commits found: 158 (showing only 58 on this page)

«  1 | 2 

Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
Issues
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
gitlabDec 14
nodeDec 14
node4Dec 14
node6Dec 14
node8Dec 14
torDec 14
asterisk13Dec 13
asterisk13*Dec 13
asterisk13*Dec 13
asterisk13*Dec 13
libxml2Dec 13
curl*Dec 11
linux-c7-curl*Dec 11
wiresharkDec 10
procmail*Dec 08

17 vulnerabilities affecting 99 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities

Last updated:
2017-12-14 19:46:33


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds

Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 32130
Broken 122
Deprecated 46
Ignore 358
Forbidden 0
Restricted 173
No CDROM 77
Vulnerable 43
Expired 10
Set to expire 38
Interactive 0
new 24 hours 7
new 48 hours12
new 7 days80
new fortnight121
new month48558

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2017 Dan Langille. All rights reserved.