I usually use stunnel with Powerpost to get ssl connection, but There are times that stunnel does not show active connections but the Powerpost works perfectly.

Does that mean I have not established an SSL connection or failure of the stunnel program?

Sounds like you haven't got a ssl connection going there.There was a recent post all about it here.Hope it helps. http://filesharingtalk.com/vb3/f-software-miscellaneous-nzbs-107/t-ssl-connection-guide-incl-stunnel-yenc-preusenet-bundled-anonymous-343603/?highlight=stunnel http://filesharingtalk.com/vb3/f-guides-and-tutorials-65/t-yenc-power-post-aa-upload-using-secure-ssl-server-connections-337101/?highlight=stunnel

Sounds like you haven't got a ssl connection going there.There was a recent post all about it here.Hope it helps. http://filesharingtalk.com/vb3/f-software-miscellaneous-nzbs-107/t-ssl-connection-guide-incl-stunnel-yenc-preusenet-bundled-anonymous-343603/?highlight=stunnel http://filesharingtalk.com/vb3/f-guides-and-tutorials-65/t-yenc-power-post-aa-upload-using-secure-ssl-server-connections-337101/?highlight=stunnel

I have read it. There is little mystery. It's easy configuration of both programs. The problem is that I do not see active connections sometimes, and other yes.

Sometimes I see it. I do not know what may be this but if I take off the stunnel, SSL connection does not work.

SSL connection apparently works because if It did not work out a error message. The only question is why not show me a few times
active connections and sometimes it shows, and if it does not show it to known if is an SSL connection.

When we use stunnel, are the connections in SSL mode although they are not shown as active on the program?

It's something rare.

I think its just a connection problem,stunnel is just a ssl wrapper of a none ssl program as you already know,Maybe yenc might need a setting tweak somewhere.

But if there is a problem I would not be posting right now through the port 443 (SSL), is that correct?

It should but you have to have put port 443 in the stunnel config part and NOT 563. But YENC would not work because you binded the program to "your computer" so a connection has to be made via your news server and by one of it's secure ports 443/563. So if you are not connected to one of those ports you wouldn't be able to post and wouldn't have a connection, you have to have SSL going to connect to those ports, so it's connected, so when you connect to your news server, in the stunnel log it will say connected and sometimes it won't say connected?. Re-install sTunnel and delete all files and re-setup, btw what OS ya using?

That's what I think. I can post via the xnews and powerpost by port 443 for example. I have the stunnel properly configured and working, but the application "run stunnel" sometimes does not show in the log open connections. I'm posting through port 443 with 4 connections in powerpost and the stunnel says me I have 0 active connections.

That's it a mystery.

yeah i don't know, maybe re-install will make it go away...dunno though.

Give Jbinup a try. It supports SSL uploading natively and works flawlessly.
http://www.jbinup.com/en/

Give Jbinup a try. It supports SSL uploading natively and works flawlessly.
http://www.jbinup.com/en/

I have got JbinUp but I dislike it. I prefer Powerpost. It works perfectly and better than JbinUp.

Show us Your config of stunnel just to make sure its correctly setup, I'm not saying its incorrectly setup just want to see,And also your setting for yenc.New eyes might find a setting missing, you never know.

I still think it's a sTunnel glitch, but you never know :lol:

Aye,Theres not really a lot of things that can go wrong with that combo.

Show us Your config of stunnel just to make sure its correctly setup, I'm not saying its incorrectly setup just want to see,And also your setting for yenc.New eyes might find a setting missing, you never know.


; Sample stunnel configuration file by Michal Trojnara 2002-2006
; Some options used here may not be adequate for your particular configuration

; Certificate/key is needed in server mode and optional in client mode
; The default certificate is provided only for testing and should not
; be used in a production environment
cert = stunnel.pem
;key = stunnel.pem

; Some performance tunings
socket = l:TCP_NODELAY=1
socket = r:TCP_NODELAY=1

; Workaround for Eudora bug
;options = DONT_INSERT_EMPTY_FRAGMENTS

; Authentication stuff
;verify = 2
; Don't forget to c_rehash CApath
;CApath = certs
; It's often easier to use CAfile
;CAfile = certs.pem
; Don't forget to c_rehash CRLpath
;CRLpath = crls
; Alternatively you can use CRLfile
;CRLfile = crls.pem

; Some debugging stuff useful for troubleshooting
;debug = 7
;output = stunnel.log

; Use it for client mode
client = yes

; Service-level configuration

[pop3s]
accept = 995
connect = 110

[imaps]
accept = 993
connect = 143

[ssmtp]
accept = 465
connect = 25

;[https]
;accept = 443
;connect = 80
;TIMEOUTclose = 0

; vim:ft=dosini

[nntp]
accept = 119
connect = ssl.astraweb.com:443

I have got in Powerpost:

Server: localhost
Por: 119
User: xxx
Pass: xxx
Connections: 4

Looks good to me, maybe you are having connections problems with your newsgroup host as your settings look fine.Maybe see if theres an alternative address you could log onto as mine has 2 addresses that are ssl enabled,1 in europe and 1 in u.s.a.

Does it do it with the standard SSL port of 563?

I have tested with the standard port and other ports, I have also tested other newservers of Europe and USA, and always the same.

It is a mystery, I said it ;)

Guess what? Its a mystery to us as well :) .You are doing everything that we do so something in your setup is letting you down.Router,cabling,NIC,Trojan/worm,ISP If you have exhausted all the above then you are screwed.

Now it seems to me demonstrates active connections. I have changed the key and have generated new key. May have influenced it.

Reviewing documentation of stunnel is strongly recommended to generate new keys, and that I have done the same.

Thanks ;)

You can use wireshark to check your traffic..

Set a filter... tcp.port == 443 and watch it.