openvpn --script-security is not working
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
openvpn (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Precise |
Fix Released
|
Undecided
|
Unassigned | ||
Quantal |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
== Rationale ==
The openvpn init script calculates script_security based on what's set in /etc/openvpn/
This was likely caused by a mismerge with Debian.
== Test case ==
1) Don't set script_security in /etc/openvpn/
2) set a line "up ./server.up" in /etc/openvpn/
3) Restart openvpn
4) Ensure that --script-security is passed to the daemon
== Regression potential ==
Can't think of any, unless someone had an invalid script_security value which was currently being ignored and may then break their VPN. However this is technically a bad config and wouldn't really qualify as a bug.
--- original bug report ---
On ubuntu 12.04, the option ""--script-security 2"" is never added to the command line of openvpn daemon
here is the diff that need to be applied to the /etc/init.d/openvpn to start the daemon correctly.
If you need more information, please let me know.
=======
--- /tmp/openvpn 2013-02-13 13:40:53.885828899 -0500
+++ /etc/init.d/openvpn 2013-02-13 13:13:52.598704452 -0500
@@ -89,7 +89,7 @@
--pidfile /var/run/
--exec $DAEMON -- $OPTARGS --writepid /var/run/
$DAEMONARG $STATUSARG --cd $CONFIG_DIR \
- --config $CONFIG_
+ --config $CONFIG_
[ "$OMIT_SENDSIGS" -ne 1 ] || ln -s /var/run/
=======
Changed in openvpn (Ubuntu): | |
status: | New → In Progress |
status: | In Progress → Fix Committed |
Changed in openvpn (Ubuntu Precise): | |
status: | New → In Progress |
description: | updated |
Changed in openvpn (Ubuntu Quantal): | |
status: | New → In Progress |
description: | updated |
description: | updated |
tags: |
added: verification-done-precise verification-needed removed: verification-done |
Uploaded to raring, 12.10 and 12.04. Please help test once it's accepted in -proposed.