rejetto forum

Software => HFS ~ HTTP File Server => Topic started by: sharf on December 09, 2009, 05:11:44 PM

Title: Stunnel with HSF help
Post by: sharf on December 09, 2009, 05:11:44 PM

ok so I'm new to HSF and I'm trying to set up Stunnel so it's secure. I'm following these (http://"http://www.rejetto.com/wiki/index.php/HFS:_Secure_your_server") instructions. The problem I'm having is when it says to copy the files, uninstall stunnel to get rid of the registry entries, and copy them back. I have done that, and the next step is causing me a problem. I open Stunnel and get the OpenSSL version I need, and it says "Extract this version of “openssl.exe” from “openssl.zip” or download it directly to your Stunnel directory from http://www.openssl.org or http://stunnel.mirt.net (.../openssl/binary-0.9.8d-zdll/openssl.exe). " Thing is, I cannot find an openssl.exe anywhere...and so I cannot generate my own key. I have gone to the openssl site and downloaded the latest tar.gz, extracted it all and cannot find an openssl.exe...How do I get this openssl.exe file?

Thanks, sharf

Title: Re: Stunnel with HSF help
Post by: SilentPliz on December 09, 2009, 05:21:30 PM

Hi! ;)

This can help you:

http://www.rejetto.com/forum/index.php/topic,7100.0.html

Title: Re: Stunnel with HSF help
Post by: sharf on December 09, 2009, 05:39:36 PM

It installed..but when I try to connect to it...I get a certificate error with this:
The security certificate presented by this website was not issued by a trusted certificate authority.
The security certificate presented by this website has expired or is not yet valid.
The security certificate presented by this website was issued for a different website's address.

Security certificate problems may indicate an attempt to fool you or intercept any data you send to the server.

....is it supposed to do that?

also upon launching, Malwarebyte's blocked it as a malicious file...I allowed it assuming it is ok...can someone clarify what happened for me?

also for some reason this post was put into another topic? Not sure why when I hit reply to this topic...

Title: Re: Stunnel with HSF help
Post by: SilentPliz on December 09, 2009, 07:03:10 PM

These messages are normal. They are displayed because the certificate created is "self-signed".

The browsers messages are a bit worrying when the certificates are not certified by a certification authority.

You can safely accept the certificate.
Many sites use this type of certificate.

Title: Re: Stunnel with HSF help
Post by: sharf on December 09, 2009, 07:07:32 PM

I figured, thanks...any idea about Malwarebyte's anti-malware though?

Title: Re: Stunnel with HSF help
Post by: SilentPliz on December 09, 2009, 07:11:42 PM

No, certainly a false positive.

AvvA is a very serious guy.

Edit:
I just tested it with Avira anti virus ... he did nothing reported.