Re: [Openvpn-devel] Summary of the IRC meeting (29th Apr 2010)

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 30/04/10 14:15, Samuli Seppänen wrote: > Hi, > > Here's the summary of the previous community meeting. > > --- > > COMMUNITY MEETING > > Place: #openvpn-devel on irc.freenode.net > Date: Thursday, 29th March 2010 > Time: 18:00 UTC > > Planned m

Re: [Openvpn-devel] [PATCH] Avoid repetition of "this config may cache passwords in memory" (v2)

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 26/04/10 09:51, David Sommerseth wrote: > From: David Sommerseth > > For OpenVPN clients with long living connections, this message is repeated > everytime the connection is renegotiated. This patch removes this behaviour > and will only show thi

Re: [Openvpn-devel] [PATCH] Revamped the script-security warning logging

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 24/04/10 13:48, David Sommerseth wrote: > From: David Sommerseth > > This is a first-cut of removing misleading warnings from the logs. > > The main task of this patch is to avoid reporting the SCRIPT_SECURITY_WARNING > over and over again, in ad

Re: [Openvpn-devel] [Openvpn-users] [TESTING NEEDED] Using --inactive and --ping seems to defeat each other

On Friday 30 April 2010, Gert Doering wrote: > On Fri, Apr 30, 2010 at 06:24:20PM +0100, Davide Brini wrote: > > Well, the obvious (and probably wrong, probably inefficient) way could be > > to just check if the packet at hand is a ping message, and if it is do > > not record it as "activity", eg

Re: [Openvpn-devel] [Openvpn-users] [TESTING NEEDED] Using --inactive and --ping seems to defeat each other

Hi, On Fri, Apr 30, 2010 at 06:24:20PM +0100, Davide Brini wrote: > Well, the obvious (and probably wrong, probably inefficient) way could be to > just check if the packet at hand is a ping message, and if it is do not > record > it as "activity", eg > > if (! is_ping_msg (&c->c2.buf)) >re

Re: [Openvpn-devel] [Openvpn-users] [TESTING NEEDED] Using --inactive and --ping seems to defeat each other

On Friday 30 April 2010, Davide Brini wrote: > if (! is_ping_msg (&c->c2.buf)) >register_activity (c, size); > > This is in two places: in process_outgoing_tun() and > process_outgoing_link(). Actually that would probably need to be done only in process_outgoing_link(), as I don't think pi

Re: [Openvpn-devel] [Openvpn-users] [TESTING NEEDED] Using --inactive and --ping seems to defeat each other

On Friday 30 April 2010, David Sommerseth wrote: > >> I agree that that would be a wise change. However, I wonder: why change > >> the amount of bytes, if you can also simply not count the ping packets? > >> To me, it would seem a much more accurate way of determining whether the > >> connection i

Re: [Openvpn-devel] [Openvpn-users] [TESTING NEEDED] Using --inactive and --ping seems to defeat each other

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 30/04/10 15:13, Samuli Seppänen wrote: > >> On 30-04-10 14:56, Samuli Seppänen wrote: >> >>> Hi all, >>> >>> In yesterday's meeting we discussed this issue: >>> >>> >>> >>> In a nutshe

Re: [Openvpn-devel] [Openvpn-users] [TESTING NEEDED] Using --inactive and --ping seems to defeat each other

> On 30-04-10 14:56, Samuli Seppänen wrote: > >> Hi all, >> >> In yesterday's meeting we discussed this issue: >> >> >> >> In a nutshell, OpenVPN's ping packets (--ping) keep the >> connection alive even if user uses the --inactive o

[Openvpn-devel] [TESTING NEEDED] Using --inactive and --ping seems to defeat each other

Hi all, In yesterday's meeting we discussed this issue: In a nutshell, OpenVPN's ping packets (--ping ) keep the connection alive even if user uses the --inactive option to close inactive connections. Now, the --inactive option has an

[Openvpn-devel] push routes openvpn on Motorola Milestone / Droid

D/OpenVPN-DaemonMonitor[/sdcard/openvpn/ic3s.ovpn]-daemon-stdout( 7158): Fri Apr 30 14:00:08 2010 us=851287 Options error: Unrecognized option or missing parameter(s) in [PUSH-OPTIONS]:4: route (2.1.1) D/OpenVPN-DaemonMonitor[/sdcard/openvpn/ic3s.ovpn]-daemon-stdout( 7158): Fri Apr 30 14:00:08 2

[Openvpn-devel] OpenVPN roadmap meeting next Thursday

Hi all, Next week's meeting will be dedicated to discussion about OpenVPN's roadmap. In this meeting James Yonan will present his views of the future of OpenVPN 3.0 and it's relationship with 2.x series. We'll try to keep the discussion at a relatively high-level, without going into gory details s

[Openvpn-devel] Summary of the IRC meeting (29th Apr 2010)

Hi, Here's the summary of the previous community meeting. --- COMMUNITY MEETING Place: #openvpn-devel on irc.freenode.net List-Post: openvpn-devel@lists.sourceforge.net Date: Thursday, 29th March 2010 Time: 18:00 UTC Planned meeting topics for this meeting were on this page:

[Openvpn-devel] Suggestion / Routing problem/feature

Hello list, I have a suggestion for further development which I don't know if it is technically achievable. Anyway, here's our problem: We run a network which consists of multiple routers behind eachother. Routers login via OpenVPN to other routers, get fixed IP addresses based on their certif