[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Web openvpn.net

[Openvpn-users] OpenVPN 2.0-rc2 released

  • Subject: [Openvpn-users] OpenVPN 2.0-rc2 released
  • From: James Yonan <jim@xxxxxxxxx>
  • Date: Sun, 12 Dec 2004 03:27:58 -0700 (MST)

RPM .spec file changes

This release has a new RPM .spec file with several changes:

(1) Plugins are now packaged in /usr/share/openvpn/plugin.  Since building
the auth-pam module requires pam-devel during the rpmbuild stage, it's
possible to disable the auth-pam plugin inclusion with an rpmbuild
--define (see comments in .spec file).

(2) Turned off auto-dependencies to get around the problem of perl and 
various perl modules being registered as dependencies.  All dependencies 
must now be manually specified.

(3) New kerberos flag for RH9 and RHEL3 to work around non-standard 
OpenSSL header directory location (see comments in .spec file).  It 
would be better to auto-detect RH9 and RHEL3 in the .spec file, but I will 
leave that patch to someone who is actually running these OSes.

I've only tested the new .spec file on SuSE 9.1, so please test on other 
platforms and report any problems.  Better yet, if you find a problem on 
some platform, try to submit a patch which fixes it.

Hibernate on Startup feature

The other change is the ability to have OpenVPN hibernate on startup until 
it gets a "go" signal from the management interface.  This was requested 
by several people.  It can also be used to "pause" and "resume" the tunnel 
from the management interface.

See the new --management-hold directive, and "hold" command in the 
management interface.



Change Log

2004.12.12 -- Version 2.0-rc2

* Amplified warnings in documentation about possible
  man-in-the-middle attack when clients do not properly
  verify server certificate.  Changes to easy-rsa README,
  FAQ, HOWTO, man page, and sample client config file.
* Added a warning message if --tls-client or --client
  is used without also specifying one of either
  --ns-cert-type, --tls-remote, or --tls-verify.
* status_open() fixes for MSVC builds (Blaine Fleming).
* Fix attempt of "ntlm.c:55: error: `des_cblock' undeclared"
  compiler error which has been reported on some platforms.
* The openvpn.spec file for rpmbuild has several
  new build-time options.  See comments in the file.
* Plugins are now built and packaged in the RPM and
  will be saved in /usr/share/openvpn/plugin/lib.
* Added --management-hold directive to start OpenVPN
  in a hibernating state until released by the
  management interface.  Also added "hold" command
  to the management interface.


Openvpn-users mailing list