| Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
| Name: openvpn | Distribution: openSUSE 12.1 |
| Version: 2.2.1 | Vendor: openSUSE |
| Release: 18.4.1 | Build date: Wed Oct 17 14:13:47 2012 |
| Group: Productivity/Networking/Security | Build host: build13 |
| Size: 1102017 | Source RPM: openvpn-2.2.1-18.4.1.src.rpm |
| Packager: http://bugs.opensuse.org | |
| Url: http://openvpn.net/ | |
| Summary: Full-featured SSL VPN solution using a TUN/TAP Interface | |
OpenVPN is a full-featured SSL VPN solution which can accommodate a wide
range of configurations, including remote access, site-to-site VPNs,
WiFi security, and enterprise-scale remote access solutions with load
balancing, failover, and fine-grained access-controls.
OpenVPN implements OSI layer 2 or 3 secure network extension using the
industry standard SSL/TLS protocol, supports flexible client
authentication methods based on certificates, smart cards, and/or
2-factor authentication, and allows user or group-specific access
control policies using firewall rules applied to the VPN virtual
interface.
OpenVPN runs on: Linux, Windows 2000/XP and higher, OpenBSD, FreeBSD,
NetBSD, Mac OS X, and Solaris.
OpenVPN is not a web application proxy and does not operate through a
web browser.
Authors:
--------
James Yonan <jim@yonan.net>
GPL-2.0+ ; LGPL-2.1+
* Wed Oct 17 2012 mt@suse.com
- Fixed openvpn init script to not map reopen to reload so the
reopen code is without any effect (bnc#781106).
- Added requested OPENVPN_AUTOSTART variable allowing to provide
an optional list of config names started by default (bnc#692440).
* Mon Aug 29 2011 mt@suse.com
- Marked /var/run/openvpn as ghost (bnc#710270), man page and
other rpmlint warning fixes
* Tue Aug 23 2011 crrodriguez@opensuse.org
- BuildRequires libselinux-devel
- Use SSL_MODE_RELEASE_BUFFERS to keep memory usage low, sent
upstream as https://community.openvpn.net/openvpn/ticket/157
* Mon Aug 22 2011 fcrozat@novell.com
- Add openvpn-2.1-systemd-passwd.patch / modify openvpn.init to
support systemd password query (bnc#675406)
* Mon Jul 11 2011 mt@suse.de
- Updated to openvpn-2.2.1, a new version series providing several
new features. This version fixes build issues and provides
updated easy-rsa for OpenSSL 1.0.0 (fixes Trac ticket #125),
- Adopted spec file, enabled saving password in a file and to
specify an alternative username in x509 cert.
- Removed X-Interactive from init script again, as systemd isn't
able to use it correctly [any more?] (bnc#675406). We will
address it later and probably use /bin/systemd-ask-password.
* Tue Mar 15 2011 crrodriguez@opensuse.org
- KVPNC is unable to parse openvpn version [bnc#679153]
* Thu Feb 17 2011 mt@suse.de
- Added X-Interactive: true LSB tag to the init script.
* Tue Nov 16 2010 mt@suse.de
- Updated to openvpn 2.1.4, providing several bug fixes and
improvements, such as:
* Fix of a problem with special case route targets
* Try to ensure, that the tun/tap interface gets closed on
non-graceful aborts.
* Several AUTH_FAILED reporting fixes causing the connection
to fail without any error indication.
* Enable exponential backoff in reliability layer retransmits.
* Proxy improvements
Please review the ChangeLog file for a complete and exact list.
* Wed Sep 08 2010 cristian.rodriguez@opensuse.org
- Do not include build date in binaries
* Tue Jun 15 2010 mt@suse.de
- Improved netconfig based client up and down sample scripts.
* Fri Jun 11 2010 anschneider@exsuse.de
- Added netconfig based client up and down scripts to samples.
* Thu Mar 11 2010 mt@suse.de
- Updated to openvpn 2.1.1; linux related changes since 2.1_rc20:
* Fixed a couple issues in sample plugins auth-pam.c and
down-root.c.
(1) Fail gracefully rather than segfault if calloc returns NULL.
(2) The openvpn_plugin_abort_v1 function can potentially be
called with handle == NULL. Add code to detect this case,
and if so, avoid dereferencing pointers derived from handle
(Thanks to David Sommerseth for finding this bug).
* Documented "multihome" option in the man page.
* Added a hard failure when peer provides a certificate chain
with depth > 16. Previously, a warning was issued.
* Added additional session renegotiation hardening. OpenVPN has
always required that mid-session renegotiations build up a new
SSL/TLS session from scratch. While the client certificate
common name is already locked against changes in mid-session
TLS renegotiations, we now extend this locking to the
auth-user-pass username as well as all certificate content in
the full client certificate chain.
- Improved openvpn init script adding messages giving a hint about
pid write failure and to look into the log messages (bnc#559041).
- Added -fno-strict-aliasing to compile flags in the spec file.
* Thu Dec 17 2009 mt@suse.de
- Updated to openvpn 2.1 2.1_rc20, fixing problems in route and
option handling provided by the from server (bnc#552440).
For complete list of changes, see ChangeLog file, here just
the IMO most important:
* Fixed a bug introduced in 2.1_rc17 (svn r4436) where using
the redirect-gateway option by itself, without any extra
parameters, would cause the option to be ignored.
* Optimized PUSH_REQUEST handshake sequence to shave several
seconds off of a typical client connection initiation.
* The maximum number of "route" directives (specified in the
config file or pulled from a server) can now be configured
via the new "max-routes" directive.
* Eliminated the limitation on the number of options that can
be pushed to clients, including routes. Previously, all
pushed options needed to fit within a 1024 byte options
string.
* Added --server-poll-timeout option : when polling possible
remote servers to connect to in a round-robin fashion,
spend no more than n seconds waiting for a response before
trying the next server.
* Added the ability for the server to provide a custom reason
string when an AUTH_FAILED message is returned to the client.
This string can be set by the server-side managment interface
and read by the client-side management interface.
* client-kill management interface command, when issued on server,
will now send a RESTART message to client. This feature is
intended to make UDP clients respond the same as TCP clients
in the case where the server issues a RESTART message in order
to force the client to reconnect and pull a new options/route
list.
* Fri Oct 02 2009 mt@suse.de
- Added network-remotefs to init script dependencies (bnc#522279).
* Wed Jun 10 2009 mt@suse.de
- Updated to openvpn 2.1 [2.1_rc18] series (fate#305289).
- Enabled pkcs11-helper for openSUSE > 10.3 (bnc#487558).
- Adopted spec file and patches, improved init script.
- Disabled installation of easy-rsa for Windows.
/etc/init.d/openvpn /etc/openvpn /usr/lib64/openvpn /usr/lib64/openvpn/plugin /usr/lib64/openvpn/plugin/lib /usr/sbin/openvpn /usr/sbin/rcopenvpn /usr/share/doc/packages/openvpn /usr/share/doc/packages/openvpn/AUTHORS /usr/share/doc/packages/openvpn/COPYING /usr/share/doc/packages/openvpn/COPYRIGHT.GPL /usr/share/doc/packages/openvpn/ChangeLog /usr/share/doc/packages/openvpn/PORTS /usr/share/doc/packages/openvpn/README /usr/share/doc/packages/openvpn/README.SUSE /usr/share/doc/packages/openvpn/README.auth-pam /usr/share/doc/packages/openvpn/README.down-root /usr/share/doc/packages/openvpn/README.plugins /usr/share/doc/packages/openvpn/contrib /usr/share/doc/packages/openvpn/contrib/OCSP_check /usr/share/doc/packages/openvpn/contrib/OCSP_check/OCSP_check.sh /usr/share/doc/packages/openvpn/contrib/README /usr/share/doc/packages/openvpn/contrib/multilevel-init.patch /usr/share/doc/packages/openvpn/contrib/openvpn-fwmarkroute-1.00 /usr/share/doc/packages/openvpn/contrib/openvpn-fwmarkroute-1.00/README /usr/share/doc/packages/openvpn/contrib/openvpn-fwmarkroute-1.00/fwmarkroute.down /usr/share/doc/packages/openvpn/contrib/openvpn-fwmarkroute-1.00/fwmarkroute.up /usr/share/doc/packages/openvpn/contrib/pull-resolv-conf /usr/share/doc/packages/openvpn/contrib/pull-resolv-conf/client.down /usr/share/doc/packages/openvpn/contrib/pull-resolv-conf/client.up /usr/share/doc/packages/openvpn/management-notes.txt /usr/share/doc/packages/openvpn/sample-config-files /usr/share/doc/packages/openvpn/sample-config-files/README /usr/share/doc/packages/openvpn/sample-config-files/client.conf /usr/share/doc/packages/openvpn/sample-config-files/firewall.sh /usr/share/doc/packages/openvpn/sample-config-files/home.up /usr/share/doc/packages/openvpn/sample-config-files/loopback-client /usr/share/doc/packages/openvpn/sample-config-files/loopback-server /usr/share/doc/packages/openvpn/sample-config-files/office.up /usr/share/doc/packages/openvpn/sample-config-files/openvpn-shutdown.sh /usr/share/doc/packages/openvpn/sample-config-files/openvpn-startup.sh /usr/share/doc/packages/openvpn/sample-config-files/server.conf /usr/share/doc/packages/openvpn/sample-config-files/static-home.conf /usr/share/doc/packages/openvpn/sample-config-files/static-office.conf /usr/share/doc/packages/openvpn/sample-config-files/tls-home.conf /usr/share/doc/packages/openvpn/sample-config-files/tls-office.conf /usr/share/doc/packages/openvpn/sample-config-files/xinetd-client-config /usr/share/doc/packages/openvpn/sample-config-files/xinetd-server-config /usr/share/doc/packages/openvpn/sample-keys /usr/share/doc/packages/openvpn/sample-keys/README /usr/share/doc/packages/openvpn/sample-keys/ca.crt /usr/share/doc/packages/openvpn/sample-keys/ca.key /usr/share/doc/packages/openvpn/sample-keys/client.crt /usr/share/doc/packages/openvpn/sample-keys/client.key /usr/share/doc/packages/openvpn/sample-keys/dh1024.pem /usr/share/doc/packages/openvpn/sample-keys/pass.crt /usr/share/doc/packages/openvpn/sample-keys/pass.key /usr/share/doc/packages/openvpn/sample-keys/pkcs12.p12 /usr/share/doc/packages/openvpn/sample-keys/server.crt /usr/share/doc/packages/openvpn/sample-keys/server.key /usr/share/doc/packages/openvpn/sample-keys/ta.key /usr/share/doc/packages/openvpn/sample-scripts /usr/share/doc/packages/openvpn/sample-scripts/auth-pam.pl /usr/share/doc/packages/openvpn/sample-scripts/bridge-start /usr/share/doc/packages/openvpn/sample-scripts/bridge-stop /usr/share/doc/packages/openvpn/sample-scripts/client-netconfig.down /usr/share/doc/packages/openvpn/sample-scripts/client-netconfig.up /usr/share/doc/packages/openvpn/sample-scripts/openvpn.init /usr/share/doc/packages/openvpn/sample-scripts/ucn.pl /usr/share/doc/packages/openvpn/sample-scripts/verify-cn /usr/share/doc/packages/openvpn/suse /usr/share/doc/packages/openvpn/suse/openvpn.init /usr/share/man/man8/openvpn.8.gz /usr/share/openvpn /usr/share/openvpn/easy-rsa /usr/share/openvpn/easy-rsa/1.0 /usr/share/openvpn/easy-rsa/1.0/README /usr/share/openvpn/easy-rsa/1.0/build-ca /usr/share/openvpn/easy-rsa/1.0/build-dh /usr/share/openvpn/easy-rsa/1.0/build-inter /usr/share/openvpn/easy-rsa/1.0/build-key /usr/share/openvpn/easy-rsa/1.0/build-key-pass /usr/share/openvpn/easy-rsa/1.0/build-key-pkcs12 /usr/share/openvpn/easy-rsa/1.0/build-key-server /usr/share/openvpn/easy-rsa/1.0/build-req /usr/share/openvpn/easy-rsa/1.0/build-req-pass /usr/share/openvpn/easy-rsa/1.0/clean-all /usr/share/openvpn/easy-rsa/1.0/list-crl /usr/share/openvpn/easy-rsa/1.0/make-crl /usr/share/openvpn/easy-rsa/1.0/openssl.cnf /usr/share/openvpn/easy-rsa/1.0/revoke-crt /usr/share/openvpn/easy-rsa/1.0/revoke-full /usr/share/openvpn/easy-rsa/1.0/sign-req /usr/share/openvpn/easy-rsa/1.0/vars /usr/share/openvpn/easy-rsa/2.0 /usr/share/openvpn/easy-rsa/2.0/Makefile /usr/share/openvpn/easy-rsa/2.0/README /usr/share/openvpn/easy-rsa/2.0/build-ca /usr/share/openvpn/easy-rsa/2.0/build-dh /usr/share/openvpn/easy-rsa/2.0/build-inter /usr/share/openvpn/easy-rsa/2.0/build-key /usr/share/openvpn/easy-rsa/2.0/build-key-pass /usr/share/openvpn/easy-rsa/2.0/build-key-pkcs12 /usr/share/openvpn/easy-rsa/2.0/build-key-server /usr/share/openvpn/easy-rsa/2.0/build-req /usr/share/openvpn/easy-rsa/2.0/build-req-pass /usr/share/openvpn/easy-rsa/2.0/clean-all /usr/share/openvpn/easy-rsa/2.0/inherit-inter /usr/share/openvpn/easy-rsa/2.0/list-crl /usr/share/openvpn/easy-rsa/2.0/openssl-0.9.6.cnf /usr/share/openvpn/easy-rsa/2.0/openssl-0.9.8.cnf /usr/share/openvpn/easy-rsa/2.0/openssl-1.0.0.cnf /usr/share/openvpn/easy-rsa/2.0/openssl-1.0.0.cnf-old-copy /usr/share/openvpn/easy-rsa/2.0/pkitool /usr/share/openvpn/easy-rsa/2.0/revoke-full /usr/share/openvpn/easy-rsa/2.0/sign-req /usr/share/openvpn/easy-rsa/2.0/tmp /usr/share/openvpn/easy-rsa/2.0/tmp/README /usr/share/openvpn/easy-rsa/2.0/tmp/build-ca /usr/share/openvpn/easy-rsa/2.0/tmp/build-dh /usr/share/openvpn/easy-rsa/2.0/tmp/build-inter /usr/share/openvpn/easy-rsa/2.0/tmp/build-key /usr/share/openvpn/easy-rsa/2.0/tmp/build-key-pass /usr/share/openvpn/easy-rsa/2.0/tmp/build-key-pkcs12 /usr/share/openvpn/easy-rsa/2.0/tmp/build-key-server /usr/share/openvpn/easy-rsa/2.0/tmp/build-req /usr/share/openvpn/easy-rsa/2.0/tmp/build-req-pass /usr/share/openvpn/easy-rsa/2.0/tmp/clean-all /usr/share/openvpn/easy-rsa/2.0/tmp/file /usr/share/openvpn/easy-rsa/2.0/tmp/inherit-inter /usr/share/openvpn/easy-rsa/2.0/tmp/list-crl /usr/share/openvpn/easy-rsa/2.0/tmp/openssl-0.9.6.cnf /usr/share/openvpn/easy-rsa/2.0/tmp/openssl-1.0.0.cnf /usr/share/openvpn/easy-rsa/2.0/tmp/pkitool /usr/share/openvpn/easy-rsa/2.0/tmp/revoke-full /usr/share/openvpn/easy-rsa/2.0/tmp/sign-req /usr/share/openvpn/easy-rsa/2.0/tmp/vars /usr/share/openvpn/easy-rsa/2.0/tmp/whichopensslcnf /usr/share/openvpn/easy-rsa/2.0/vars /usr/share/openvpn/easy-rsa/2.0/whichopensslcnf /var/adm/fillup-templates/sysconfig.openvpn /var/run/openvpn
Generated by rpm2html 1.8.1
Fabrice Bellet, Mon May 20 05:51:29 2013