Hello Steffan,
Will this change be in 2.3.6 that'll be released tomorrow?
Thanks,
Reinoud.
On Sun, Nov 30, 2014 at 9:55 AM, Steffan Karger wrote:
> Remove the --disable-ssl configure option and accompanying ENABLE_SSL
> defines in the master/2.4 branch, to reduce the code and testing
> complexi
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi all,
A critical denial of service security vulnerability affecting OpenVPN
servers was recently brought to our attention. A fixed version of
OpenVPN (2.3.6) will be released today/tomorrow (1st Dec 2014) at around
18:00 UTC.
Brace yourselves for
Remove the --disable-ssl configure option and accompanying ENABLE_SSL
defines in the master/2.4 branch, to reduce the code and testing
complexity a bit.
This does not remove to runtime option to run without SSL, just the compile
time option to not include any SSL-related code.
During the communit
ACK.
Your patch has been applied to the master and release/2.3 branches.
Since we agreed that we actually want to get rid of --enable-password-save
(unconditionally enable it, get rid of the autoconf option) this might
seem to be a bit redundant, but the patch is there, and it won't harm
to mak
Hi,
to followup on this:
On Fri, Nov 21, 2014 at 08:40:35PM +0100, Yegor Yefremov wrote:
> Set enable_password_save to "yes", if the option is not given,
> as stated in the description.
For now, I have committed David's patch that just corrects the help
text in configure, without changing the ac
