Mandrake Linux Archives: security-firewall@mandrivalinux.org
Mandrake Linux: security-firewall@mandrivalinux.org
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
- From: florin
- Subject: Re: [Security Firewall] Fwd: [Cooker] [Bug 15779] [MNF] ASSIGNED: building an OpenVPN with ONLY the interface is impossible
- Date: 17 May 2005 12:13:59 -0000
I'm going to add this during this week ... I didn't forget you :o) On 5/11/05, Bret Baptist <bbaptist@iexposure.com> wrote: > Florin do you know anything about this? *Any* way we can get OpenVPN 2.0 into > MNF2? This is going to be a *major* sticking point for me. > > Bret. > > ---------- Forwarded Message ---------- > > Subject: [Cooker] [Bug 15779] [MNF] ASSIGNED: building an OpenVPN with ONLY > the interface is impossible > http://qa.mandriva.com/show_bug.cgi?id=15779 > > ------- Additional Comments From andreas@mandriva.com 2005-05-11 14:52 > ------- Hi Bret, > > you were right, I'm not following cooker since mnf is based on 10.0. Thanks > for posting here. > > This ticket is about openvpn 1.x, not 2.x unfortunately. I don't think there > is time to upgrade it to 2.0 before release, but a later update could be > made available I think. > > There are other things I would like to upgrade, like snort. > > Regarding Florin, he is still the default owner of mnf-related tickets. I > don't know about his cvs commit access, though. > > -- > Configure bugmail: http://qa.mandriva.com/userprefs.cgi?tab=email > ------- You are receiving this mail because: ------- > You are on the CC list for the bug, or are watching someone who is. > > ------- Reminder: ------- > assigned_to: andreas@mandriva.com > status: ASSIGNED > distribution: cooker > creation_date: > description: > When wanting to build an OpenVPN with the interface it is impossible. > The online help doesn't help at all, the online help says that in the > described example /etc/freeswan/ipsec.d/cacerts/my-ca.crt will be used, and > in fact it is /etc/openvpn/my-ca.crt so openvpn won't start. > It is explained NOWHERE that the machine's own > /etc/freeswan/ipsec.d/certs/machinename.crt /etc/freesw > an/ipsec.d/certs/machinename.key and /etc/freeswan/ipsec.d/cacerts/ca.crt > need to be copyed (or linked) in etc/openvpn/ for openvpn to work. > > An advanced user will find out how to make it work, but an ordinary user > trusting the interface will fail to make it work. > > And why can't the following command : > openssl dhparam -out /etc/openvpn/dh2048.pem 2048 > be done by the interface? > > -- > Yves-Gwenaël Bourhis > > ------------------------------------------------------- > > -- > Bret Baptist > Systems and Technical Support Specialist > bbaptist@iexposure.com > Internet Exposure, Inc. > http://www.iexposure.com > > (612)676-1946 x17 > Web Development-Web Marketing-ISP Services > ------------------------------------------ > > Today is the tomorrow you worried about yesterday. > > > ____________________________________________________ > Want to buy your Pack or Services from MandrakeSoft? > Go to http://www.mandrakestore.com > Join the Club : http://www.mandrakeclub.com > ____________________________________________________ > > > -- Florin
____________________________________________________ Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com ____________________________________________________
- References:
- Prev by Date: Re: [Security Firewall] ADSL connection
- Next by Date: Re: [Security Firewall] feedback on ftwall and mnf
- Previous by thread: [Security Firewall] Fwd: [Cooker] [Bug 15779] [MNF] ASSIGNED: building an OpenVPN with ONLY the interface is impossible
- Next by thread: [Security Firewall] feedback on ftwall and mnf
- Index(es):