Hi, 2012/3/13 Heiko Hund <heiko.h...@sophos.com>: > On Monday 12 March 2012 19:01:41 Alon Bar-Lev wrote: >> What is the baseline? This what we should agree first... >> Should openvpn daemon be run on completely unprivileged account or not. > > I don't support the idea about running openvpn.exe with elevated privileges. > It has been run as the user before and that worked fine until Microsoft > limited access to system resources in Vista. The service approach with the > elevation pipe solves exactly that problem.
I agree that being able to run openvpn in an unprivileged account is a worthwhile goal. The GUI/service-proposal does not appear to achieve that while the other two do. For regular desktop systems the unprivileged account could potentially be the interactive users account. For enterprise systems, the unprivileged account should probably be separate from the interactive user's account. Only the COM+ approach appears to achieve the latter requirement. Of course, the GUI/service-proposal could be combined with the interactive service proposal to achieve something quite similar. (I don't see the interactive service proposal as sufficient for the enterprise case, because the user still has too much control over the connection (where to connect, what scripts to run, etc.)) Cheers Fabian
