Posted by Jim Guerber on July 26, 2018 at 06:42:27:
In Reply to: https posted by Robert G Laurin on July 24, 2018 at 12:09:01:
I just completed a project for a Comet customer who needed to migrate from SSL to TLS. I implemented TLS1.2, converting from internal comet ssl to STUNNEL. It seems that credit card processing no longer trusts SSL for security.
The customer was using email printer. The STUNNEL conversion was pretty straight forward. I suggest you just try it and let us know if you encounter any glitches or issues.
A summary for those of you who have not dealt with STUNNEL:
STUNNEL is a shell around OPENSSL. OPENSSL is free. It is maintained by volunteers many of them in the security industry. Openssl is probably the most popular api for tcp security. It is regularly updated when new threats are discovered.
STUNNEL receives packets in the clear from its localhost on a configurable port. It then encapsulates the packets with a encryption of your choice and sends them to the remote server and port of your choice. It runs under Linux and Windows and is fairly easy to install.
Post a Followup
Each file can be a maximum of 1MB in length Uploaded files will be purged from the server on a regular basis.