A simple SSL/TLS proxy with mutual authentication for securing non-TLS services.
New Features
WatchdogSec
option. If Ghostunnel fails to respond, systemd will automatically relaunch it. See docs/WATCHDOG.md for an example service file.--use-landlock
flag, Ghostunnel will call upon landlock on Linux to limit access to files and sockets. This is an experimental feature, please give it a try and let us know if you run into any issues.Bug Fixes
Other Changes
Full Changelog: https://github.com/ghostunnel/ghostunnel/compare/v1.7.3...v1.8.0-rc.1
Changes
Changes
Plus some miscellaneous fixes & build changes (#405, #399, #401, #397, #395)
Full Changelog: https://github.com/ghostunnel/ghostunnel/compare/v1.7.1...v1.7.2
Changes
Changes
Changes
Changes
Changes
Other Migrated release build process to GitHub Actions to avoid the need for cross-compilation toolchains. Unfortunately this means that linux/arm64 and windows/386 release builds will not be available for the moment. We plan to add back release builds for those platforms for when feasible with GitHub Actions.
Added changes to make RSA-PSS (for TLS 1.3) work on Windows using platform certificate store keys (certstore).
Second release candidate for 1.6.0, fixes ordering of TLS 1.3 cipher suites.