lp:ubuntu/gutsy-updates/openvpn
- Get this branch:
- bzr branch lp:ubuntu/gutsy-updates/openvpn
Branch merges
Related source package recipes
Branch information
Recent revisions
- 16. By Jamie Strandboge
-
* init.c: send modulus to openssl-vulnkey rather than calling
openssl-vulnkey on the file. This allows for password protected ssl keys
(LP: #230197)
* debian/control: Depends on openssl-blacklist > 0.3.2 - 15. By Martin Pitt
-
init.c: Do not attempt to verify the key file with openvpn-vulnkey if it
is not accessible (any more). This happens when using the 'user', 'group',
or 'chroot' options in multi-client mode, and the SSL key file thus
becomes unreadable from the second time on. If the key file is not
accessible at the very start, this is already handled anyway, so we can
safely ignore this condition. (LP: #230208)
Note that this is not an issue when using pre-shared keys
(do_init_crypto_ static( ), since multi-client mode only works with TLS.
However, we also check it here just to be on the safe side. - 14. By Jamie Strandboge
-
* SECURITY UPDATE: don't allow use of known vulnerable weak SSL/TLS and
shared secret keys caused by Debian openssl bug
* init.c: patch do_init_crypto_ static( ) to use openvpn-vulnkey and
do_init_crypto_ tls() to use openssl-vulnkey
* debian/control: Depends on libssl0.9.8 (>= 0.9.8e-5ubuntu3.2),
openssl-blacklist and openvpn-blacklist
* add critical debconf note
* References
CVE-2008-0166
http://www.ubuntu. com/usn/ usn-612- 1 - 13. By Alberto Gonzalez Iniesta <email address hidden>
-
Install /etc/openvpn/
update- resolv- conf with correct permissions - 12. By Alberto Gonzalez Iniesta <email address hidden>
-
* Fixed init.d script to avoid running multiple instances of the
same VPN. Thanks Keith Kyzivat for pushing me into looking
again into this issue. (Closes: #326080)
* Included patch to README.Debian from Peter Rabbitson describing
/etc/network/ interfaces integration. (Closes: #413732)
* Also included joeyh's suggestion on the previous subject.
(Closes: 419797)
* Avoid restarting a vpn instead of reloading it due to wrong
detection of 'user' option in init.d script. Thanks Josip Rodin.
(Closes: 403503)
* Added Russian debconf translation. (Closes: #414088)
Thanks Yuriy Talakan.
* Built against liblzo2 instead of liblzo. (Closes: #423366) - 11. By Alberto Gonzalez Iniesta <email address hidden>
-
Added Galician debconf translation. (Closes: #412492)
Thanks Jacobo Tarrio - 10. By Alberto Gonzalez Iniesta <email address hidden>
-
* Updated Spanish debconf translation. (Closes: #393796)
* Updated German debconf translation. (Closes: #397019)
* Updated Japanese debconf translation. (Closes: #392627)
* Added Italian debconf translation. (Closes: #398050)
* Added Portuguese debconf translation. (Closes: #400685) - 9. By Alberto Gonzalez Iniesta <email address hidden>
-
* New upstream release. No changes in *NIX source code.
Updating to avoid 'New upstream, blah, blah'.
* debian/control: Fixed spelling error in description
(Closes: #390242)
* debian/copyright: Updated project's homepage and author's
email address. (Closes: #388466)
* debian/copyright: Updated the FSF address.
* Updated Dutch debconf translation. (Closes: #389982, 379802)
Thanks Kurt De Bree
* Updated Czech debconf translation. (Closes: #384755)
Thanks Miroslav Kure - 8. By Alberto Gonzalez Iniesta <email address hidden>
-
* The 'Translators, translators, translators' release.
* New upstream version.
* Added Dutch debconf translation. (Closes: #370073)
Thanks Kurt De Bree
* Updated Danish debconf translation. (Closes: #369772, #376704)
Thanks Claus Hindsgaul
* Updated French debconf translation. (Closes: #373191)
Thanks Michel Grentzinger - 7. By Alberto Gonzalez Iniesta <email address hidden>
-
* The "MaƱana" Release.
* debian/control: Added Suggests: openssl (Closes: #368256)
* debian/postinst: Run the init.d script with 'start' when doing
a fresh install or stop2upgrade=true. (Closes: #366085, #338956)
* Updated Czech debconf translation (Closes: #333989)
Thanks Miroslav Kure.
* Bumped Standards-Version to 3.7.2.0, no change.
* debian/rules: Avoid compressing 'pkitool' (Closes: #354478)
* debian/templates: Corrected typo on init scripts order change.
(Closes: #351664)
* Updated German debconf translation (Closes: #345853)
Thanks Erik Schanze.
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/karmic/openvpn
