|
|
Harald Roelle <roeldom1@xxxxxxxxxxxxx> said: > Hi *, > > In openvpn 1.6_rc3, setting a variable using setenv, it looks like that the value given to the script's environment gets mangled. > Example: > > In config file: > setenv testVar "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890 <>|,.-#+^;:_*~\!§$%&/()=?" > > In script: > echo "$testVar" > /tmp/lall > > The file reads: > abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890......-....._......./..=. > > Is this a bug or a feature? It's a security feature -- designed to prevent shell variable expansion attacks. > Can this behaviour be influenced by an option? Not right now, but if you want to disable it, modify the safe_string function in misc.c James ____________________________________________ Openvpn-users mailing list Openvpn-users@xxxxxxxxxxxxxxxxxxxxx https://lists.sourceforge.net/lists/listinfo/openvpn-users |