February 2020
Intermediate to advanced
666 pages
15h 45m
English
Content preview from Mastering Linux Security and Hardening - Second Edition
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
Creating a stunnel connection on Ubuntu – client side
Using this procedure on an Ubuntu client will allow it to send its files to either a CentOS or an Ubuntu log server:
- Install stunnel:
sudo apt install stunnel
- In the /etc/stunnel directory, create the stunnel.conf file with the following contents:
client=yesfips=no[speak to server]accept = 127.0.0.1:6514connect=192.168.0.161:30000
Note that even though we can't use FIPS mode on the Ubuntu clients, we can still have them send log files to a CentOS log server that is configured to use FIPS mode. (So, yes, we can mix and match.)
- Start the stunnel daemon:
sudo /etc/init.d/stunnel4 start
- To make it automatically start when you reboot the system, edit the /etc/default/stunnel4 file. ...