Is there a plugin allowing me to run "route-up" and "iproute"
(replacement) scripts taking advantage of the split privilege execution?
I know there is down-root which allows a "down" script to be executed in
this fashion, but I am not sure I could find a similar one for the above
two scripts.
The reason I am asking this is two-fold: currently I have to install the
sudo package, configure it and include sudo commands in the above 2
scripts in order to avoid route/ip commands being executed in
unprivileged environment. While this works well, I'd much rather have
everything better organised (and more secure) within OpenVPN.
I've had a (very) quick look at down-root.c and openvpn-plugin.h files
and it seems possible to use those as a template to write 2 additional
plugins dealing with those two scripts, though I do not wish to reinvent
the wheel if there are already in existence or if there is an easier way
of doing this (if at all possible).
Many thanks in advance!
- [Openvpn-devel] route-up and iproute plugins Mr Dash Four
-
