MR> If this has changed, and there is a way
MR> to interact with the service as non-admin then I will certainly look
MR> into this...
take subinacl to change the ACL of the openvpn-service
http://www.microsoft.com/downloads/details.aspx?FamilyID=e8ba3e56-d8fe-4a91-93cf-ed6985e3927b&displaylan
Hello Matthew,
> specifically by a member of the 'Network Configuration Operators' group,
> This group gives more rights to the user than are necessary for just
> routing, and may create security problems.
Which problems? They can't do harmfull things:
http://support.microsoft.com/kb/297938/en-u
I've recently come back to looking at openvpn, after discovering that it
now handles most things 'out of the box' for non-admins on Windows a
requirement on our managed machines).
The one problem I've discovered is that as openvpn starts, it tries to
alter the routing tables on the client to r
