Created: Sun Mar 10 21:30:56 CET 2019
Last modiﬁed: Sun Mar 10 21:54:43 CET 2019
They often lack support of SSL/TLS. In short, you can’t use ii(1) to connect to Freenode safely.
To understand how stunnel addresses this issue, let’s look at a sample conﬁguration ﬁle:
[IRC client 1] client = yes accept = 127.0.0.1:6667 connect = irc.lainchan.org:6697
Pretty self-explanatory right? You can now point your unsecure irc
irc://localhost:6667 and stunnel(8) will take care of
SSL-izing the connection for you!
Last release was in December 2018.
Of course, there is more to it than this, for example, it can be used on servers. If your HTTP server doesn’t handle HTTPS connections (darkhttpd I’m looking at you) you can conﬁgure stunnel to digest the secure trafﬁc before it reaches it.
Install and conﬁgure stunnel
pkg install stunnel $EDITOR '/usr/local/etc/stunnel/stunnel.conf' stunnel
You might want to turn on some security features that are documented