Hi,
The pacth is in the next email.
This is not yet tested extensively, but has passed some quick tests.
A simple approach of parsing the options string is used instead of passing
structs:
the latter will break the GUI everytime a new option is added to the white-list.
Current white-list is jus
Windows only:
- Allow only a set of whitelisted options in the command line options passed by
interactive service clients unless
(i) user is the local Adminsitrator group
AND/OR
(ii) in a predefined group (see below)
Only the group membership is checked, the client process need not
Hi,
We just got an EV certificate token thingy, which certainly does not
have SHA-1. The problem is that the token makes it impossible to safely
automate the signing process. So basically we have to turn off automated
signing in openvpn-build and just sign the files we absolutely have to.
This
W dniu 18.02.2016 o 19:08, Gert Doering pisze:
> Hi,
>
> On Thu, Feb 18, 2016 at 06:08:02PM +0100, Jacek Wielemborek wrote:
>> Well the attacker could send a funny packet with a valid checksum,
>> encrypted and authenticated, right?
>
> Indeed, but that would be someone we trust enough to let hi
W dniu 18.02.2016 o 18:03, Gert Doering pisze:
> Hi,
>
> On Thu, Feb 18, 2016 at 05:15:50PM +0100, Jacek Wielemborek wrote:
>> The thing is that in order to fuzz it most efficiently, it would be good
>> to modify the server to use stdin/stdout (or dev null) for network I/O
>> and terminate after h
Hi,
On Fri, Feb 19, 2016 at 01:51:02AM -0500, Selva Nair wrote:
> The pacth is in the next email.
>
> This is not yet tested extensively, but has passed some quick tests.
> A simple approach of parsing the options string is used instead of passing
> structs:
> the latter will break the GUI every
Hello,
I am currently working on a project that requires SSL VPN to use session
resumptions.
I need to add the TLS Session Resumption functionality to OpenVPN. Any
starters as in how I could achieve this?
I know about the SSL_OP_NO_TICKET flag added to disable the resumption
process. Will deletin
Am 19.02.16 um 14:32 schrieb Shubham Chauhan:
> Hello,
>
> I am currently working on a project that requires SSL VPN to use
> session resumptions.
>
> I need to add the TLS Session Resumption functionality to OpenVPN. Any
> starters as in how I could achieve this?
> I know about the SSL_OP_NO_TIC
Hi,
Thanks for the quick feedback.
On Fri, Feb 19, 2016 at 6:37 AM, Gert Doering wrote:
> Hi,
>
> On Fri, Feb 19, 2016 at 01:51:02AM -0500, Selva Nair wrote:
> > The pacth is in the next email.
> >
> > This is not yet tested extensively, but has passed some quick tests.
> > A simple approach of
Am 19.02.16 um 15:00 schrieb Shubham Chauhan:
> Thank you for such a quick reply.
>
> I agree that VPN sessions and SSL sessions are not necessarily the same.
> Let me be more specific with my question for a better discussion.
>
> In an active OpenVPN session, at regular intervals, a full SSL
>
Thanks. I didn't knew about this. This will be helpful.
I am specifically looking for enabling TLS session resumptions though.
Resuming the session with session IDs stored in a cache at server side
(the general process of an abbreviated handshake).
On Feb 19, 2016 7:50 PM, "Arne Schwabe" wrote:
Thank you for such a quick reply.
I agree that VPN sessions and SSL sessions are not necessarily the same.
Let me be more specific with my question for a better discussion.
In an active OpenVPN session, at regular intervals, a full SSL handshake
takes place (because the SSL session expires). I ch
Hi,
On Fri, Feb 19, 2016 at 07:02:21PM +0530, Shubham Chauhan wrote:
> I am currently working on a project that requires SSL VPN to use session
> resumptions.
>
> I need to add the TLS Session Resumption functionality to OpenVPN. Any
> starters as in how I could achieve this?
> I know about the S
Hi,
We have a few pending pull requests in openvpn-gui. At least one of them
(put --log first in the command line) is tiny and may be reviewed without
getting sullied by association to windows:-)
Could anyone from here please take a look? Here is a link:
https://github.com/OpenVPN/openvpn-gui/pu
14 matches
Mail list logo
