[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Google
 
Web openvpn.net

Re: [Openvpn-users] revocation

  • Subject: Re: [Openvpn-users] revocation
  • From: Christian Fernandez <cfernandez@xxxxxxxxxxxxxxx>
  • Date: Thu, 03 Aug 2006 09:55:39 -0400
you talk like if I didn't follow the documentation.. this is exacly what
I did till ./revoke-full   name
the problem I got to ~/keys and my crl.pem is still the same.


Mike Cora wrote:

>Just do the following:
>
>#. ./vars
>
>#./revoke-full
>
>then just move crl.pem from ~/keys to your openvpn dir
>
>crl-verify crl.pem should be in your server.conf file so the daemon will
>check for revoked certs
>
>
>
>-----Original Message-----
>From: Christian Fernandez <cfernandez@xxxxxxxxxxxxxxx>
>To: Christian Fernandez <cfernandez@xxxxxxxxxxxxxxx>
>Cc: openvpn-users@xxxxxxxxxxxxxxxxxxxxx
>Date: Wed, 02 Aug 2006 21:54:11 -0400
>Subject: Re: [Openvpn-users] revocation
>
>  
>
>>Bump! can someone take a look please? I have look all over google for a
>>FAQ of errors or things related to revocation
>>and for my surprise there is almost no documentation about it.. 10
>>lines
>>in the howto and almost no mention anywhere...
>>and I need to reboke a kee before my boss start asking questions about
>>why this software is obscure and have another excuse to tell me that
>>OSS
>>is complicated when is not, is jsut sometimes we have to do things we
>>are not familiar, like in my case revocation, I can setup all types of
>>vpn's pptp, ipsec create and revoke there but in openvpn I can do
>>mostly
>>anything by now but never had to revoke under it so I am a noob in
>>issues related to it. and usually when things are not in production I
>>will test things and figure out in my own, but I cant just do that
>>here.
>>
>>
>>Christian Fernandez wrote:
>>
>>    
>>
>>>I have a problem with revocation..
>>>I am following the steps under:
>>>http://openvpn.net/howto.html#revoke
>>>and everything goes on till I go to look inside the keys folder for
>>>      
>>>
>>the
>>    
>>
>>>crl.pem
>>>there is one file but it have some old account I revoked or a key or
>>>something.
>>>this is the first time I try to revoke a key on openvpn
>>>Im using openvpn 2 under gentoo.
>>>OpenVPN 2.0.6 i686-pc-linux-gnu [SSL] [LZO] [EPOLL] built on Apr  7
>>>      
>>>
>>2006
>>    
>>
>>>please help soon cause I need to revoke this key,
>>>PS: I dont understand why after revoking the key I have to add the
>>>crl.pm to the openvpn config so openvpn will check that list everytime
>>>      
>>>
>>a
>>    
>>
>>>user tryins to log in, if they file was already revoked with the
>>>revoke-full command.
>>>Thanks.
>>> 
>>>
>>>----------------------------------------------------------------------
>>>      
>>>
>>---
>>    
>>
>>>Take Surveys. Earn Cash. Influence the Future of IT
>>>Join SourceForge.net's Techsay panel and you'll get the chance to
>>>      
>>>
>>share your
>>    
>>
>>>opinions on IT & business topics through brief surveys -- and earn
>>>      
>>>
>>cash
>>    
>>
>>>http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEV
>>>      
>>>
>>DEV
>>    
>>
>>>----------------------------------------------------------------------
>>>      
>>>
>>--
>>    
>>
>>>_______________________________________________
>>>Openvpn-users mailing list
>>>Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
>>>https://lists.sourceforge.net/lists/listinfo/openvpn-users
>>> 
>>>
>>>      
>>>
>>    
>>
>
>
>  
>


begin:vcard
fn:Christian Fernandez
n:Fernandez;Christian
org:Voice Signal Technologies;IT-Network
adr:;;150 Presidential way;Woburn;MA;01801;USA
email;internet:cfernandez@xxxxxxxxxxxxxxx
title:Senior Network Engineer
tel;work:781 9705206
tel;cell:617-645-6236
note;quoted-printable:Chris F.=0D=0A=
	Senior Network Engineer=0D=0A=
	Voice Signal Technologies=0D=0A=
	781 9705206=0D=0A=
	www.voicesignal.com=0D=0A=
	Full-Disclosure - We believe in it.=0D=0A=
	We recomend firefox and thunderbird.=0D=0A=
	www.mozilla.org
url:http://www.voicesignal.com
version:2.1
end:vcard


-------------------------------------------------------------------------
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys -- and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
_______________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users

Warning: require_once(../../../archive_common.php) [function.require-once]: failed to open stream: No such file or directory in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2006-08/msg00031.html on line 330

Fatal error: require_once() [function.require]: Failed opening required '../../../archive_common.php' (include_path='/usr/local/lib/php') in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2006-08/msg00031.html on line 330