Re: [Openvpn-users] re-authenticating ever +/- 15 minutes

2019-01-21 Thread Steven Haigh
pn. Link: https://www.crc.id.au/openvpn-otp-with-a-yubikey/ It works fine and has been very stable for many months. -- Steven Haigh 📧 net...@crc.id.au 💻 https://www.crc.id.au 📞 +61 (3) 9001 6090 📱 0412 935 897 signature.asc Description: This is a digitally signed message par

Re: [Openvpn-users] Management interface "echo" command standardization

2017-11-27 Thread Steven Haigh
On Monday, 27 November 2017 10:40:40 PM AEDT Jonathan K. Bullard wrote: > Hi, > > On Mon, Nov 27, 2017 at 2:23 AM, Steven Haigh wrote: > > On 2017-11-27 05:06, Selva Nair wrote: > >> On Sun, Nov 26, 2017 at 10:49 AM, Jonathan K. Bullard > >> > >> wrot

Re: [Openvpn-users] Management interface "echo" command standardization

2017-11-26 Thread Steven Haigh
lay something, it should be pieced together in your script, then sent to openvpn in a single, well specified format. It feels like getting openvpn to piece together what you really want is a workaround to make any plugin script easier - and putting the complexity into openvpn to compensate.

Re: [Openvpn-users] Topics for the community meeting (Wed, 26th Sep 2017)

2017-09-27 Thread Steven Haigh
ail-archive.com/openvpn-devel@lists.sourceforge.net/msg15132.html Happy to answer specifics about this - or revert on topic. -- Steven Haigh 📧 net...@crc.id.au 💻 http://www.crc.id.au 📞 +61 (3) 9001 6090📱 0412 935 897 signature.asc Description: This is a digitally signed message part. --

Re: [Openvpn-users] Please take a second look at "#2 Improve TCP-over-TCP performance"

2017-08-30 Thread Steven Haigh
/03/04/network-virtualization-encapsulation-an > d-stateless-tcp-transport-stt/ > > In sum and I think I speak for all us, we are not against such a FakeTCP > protocol but it should be > > a) implemented outside openvpn (the kernel) > b) nobody of the OpenVPN core team will impleme

Re: [Openvpn-users] --no-iv option deprecation

2017-07-31 Thread Steven Haigh
hould you really be doing this in the first place? -- Steven Haigh ? net...@crc.id.au ? http://www.crc.id.au ? +61 (3) 9001 6090? 0412 935 897 -- Check out the vibrant tech community on one of the world's

[Openvpn-users] RFCv3: Yubikey authentication for OpenVPN

2017-07-07 Thread Steven Haigh
conflicts losing tokens. Happy to receive feedback on the script, its operation, or implementation. -- Steven Haigh 📧 net...@crc.id.au 💻 http://www.crc.id.au 📞 +61 (3) 9001 6090📱 0412 935 897 yubikey-auth-tokens Description: Perl program signature.asc Description: This is a

[Openvpn-users] RFCv2: Yubikey authentication for OpenVPN

2017-07-07 Thread Steven Haigh
client operation for auth tokens by ordex and dazo. Ticket details: https://community.openvpn.net/openvpn/ticket/904 Happy to receive feedback on the script, its operation, or implementation. -- Steven Haigh 📧 net...@crc.id.au 💻 http://www.crc.id.au 📞 +61 (3) 9001 6090📱 0412 935 897

Re: [Openvpn-users] [Openvpn-devel] RFC: Yubikey authentication for OpenVPN.

2017-06-14 Thread Steven Haigh
On Thursday, 15 June 2017 12:42:53 AM AEST Selva Nair wrote: > On Wed, Jun 14, 2017 at 9:32 AM, Steven Haigh wrote: > > script-security 2 > > client-connect /etc/openvpn/yubikey-auth-tokens > > auth-user-pass-verify /etc/openvpn/yubikey-auth-tokens via-file > &g

[Openvpn-users] RFC: Yubikey authentication for OpenVPN.

2017-06-12 Thread Steven Haigh
cript, its operation, or implementation. -- Steven Haigh 📧 net...@crc.id.au 💻 http://www.crc.id.au 📞 +61 (3) 9001 6090 📱 0412 935 897 yubikey-auth-tokens Description: Perl program signature.asc Description: This is a digitally signed me

Re: [Openvpn-users] 2.4.2 and auth-token

2017-06-12 Thread Steven Haigh
On Monday, 12 June 2017 6:47:33 PM AEST you wrote: > On 12/06/17 08:13, Steven Haigh wrote: > > On Monday, 12 June 2017 3:47:24 PM AEST Steven Haigh wrote: > >> Hi all, > >> > >> I'm trying to get renegotiation working with openvpn 2.4.2 using a >

Re: [Openvpn-users] 2.4.2 and auth-token

2017-06-11 Thread Steven Haigh
On Monday, 12 June 2017 3:47:24 PM AEST Steven Haigh wrote: > Hi all, > > I'm trying to get renegotiation working with openvpn 2.4.2 using a YubiKey. > > I have had no issues creating a auth-user-pass-verify script to validate the > password provided by the Yubikey and thi

[Openvpn-users] 2.4.2 and auth-token

2017-06-11 Thread Steven Haigh
ation? Am I wrong in expecting the token to be in the $password field? Is this a bug? Configuration issue? Thanks. -- Steven Haigh 📧 net...@crc.id.au 💻 http://www.crc.id.au 📞 +61 (3) 9001 6090 📱 0412 935 897 signature.asc Description: This is a digitally signed message