Hi, On Sat, Feb 25, 2017 at 08:40:14AM +0800, Antonio Quartulli wrote: > When the auth-token option is pushed from the server to the client, > the latter has to ignore the auth-nocache directive (if specified). > > The password will now be substituted by the unique token, therefore > it can't be wiped out, otherwise the next renegotiation will fail. > > Trac: #840 > Cc: David Sommerseth <open...@sf.lists.topphemmelig.net> > Signed-off-by: Antonio Quartulli <a...@unstable.cc>
This patch was still sitting "unanswered" in the list archives (though
it never landed in patchwork, as far as I can see).
NAK :-) - on the basis of "multiple rounds of patches from Arne related
to auth-nocache and/or auth-token have landed in 2.4 and 2.5, so I think
the underlying problem has been fixed for good, AND this patch won't
apply anymore anyway".
(Going through my "open issues" mail heap for all that has auth-user-pass
in the subject, since we finally have inline auth-user-passed done... :-) )
gert
--
"If was one thing all people took for granted, was conviction that if you
feed honest figures into a computer, honest figures come out. Never doubted
it myself till I met a computer with a sense of humor."
Robert A. Heinlein, The Moon is a Harsh Mistress
Gert Doering - Munich, Germany g...@greenie.muc.de
signature.asc
Description: PGP signature
_______________________________________________ Openvpn-devel mailing list Openvpn-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-devel
