ubuntu/+source/openvpn:ubuntu/feisty-devel

Last commit made on 2008-06-12
Get this branch:
git clone -b ubuntu/feisty-devel https://git.launchpad.net/ubuntu/+source/openvpn
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
ubuntu/feisty-devel
Repository:
lp:ubuntu/+source/openvpn

Recent commits

851cd4d... by Jamie Strandboge on 2008-06-11

Import patches-unapplied version 2.0.9-5ubuntu0.3 to ubuntu/feisty-security

Imported using git-ubuntu import.

Changelog parent: 53956400a8904adbf42db1e4605229ac81710e8b

New changelog entries:
  * init.c: send modulus to openssl-vulnkey rather than calling
    openssl-vulnkey on the file. This allows for password protected ssl keys
    (LP: #230197)
  * debian/control: Depends on openssl-blacklist > 0.3.2

5395640... by Martin Pitt on 2008-05-14

Import patches-unapplied version 2.0.9-5ubuntu0.2 to ubuntu/feisty-security

Imported using git-ubuntu import.

Changelog parent: e1078e1f98d9e3c3d9d7a05f2acdc524679b719d

New changelog entries:
  * init.c: Do not attempt to verify the key file with openvpn-vulnkey if it
    is not accessible (any more). This happens when using the 'user', 'group',
    or 'chroot' options in multi-client mode, and the SSL key file thus
    becomes unreadable from the second time on. If the key file is not
    accessible at the very start, this is already handled anyway, so we can
    safely ignore this condition. (LP: #230208)
    Note that this is not an issue when using pre-shared keys
    (do_init_crypto_static(), since multi-client mode only works with TLS.
    However, we also check it here just to be on the safe side.

e1078e1... by Jamie Strandboge on 2008-05-13

Import patches-unapplied version 2.0.9-5ubuntu0.1 to ubuntu/feisty-security

Imported using git-ubuntu import.

Changelog parent: 6ddf31fe74bdf7712c0f63143b861472680e4fa5

New changelog entries:
  * SECURITY UPDATE: don't allow use of known vulnerable weak SSL/TLS and
    shared secret keys caused by Debian openssl bug
  * init.c: patch do_init_crypto_static() to use openvpn-vulnkey and
    do_init_crypto_tls() to use openssl-vulnkey
  * debian/control: Depends on libssl0.9.8 (0.9.8c-4ubuntu0.3),
    openssl-blacklist and openvpn-blacklist
  * add critical debconf note
  * References
    CVE-2008-0166
    http://www.ubuntu.com/usn/usn-612-1

6ddf31f... by Alberto Gonzalez Iniesta <email address hidden> on 2007-02-27

Import patches-unapplied version 2.0.9-5 to ubuntu/feisty

Imported using git-ubuntu import.

Changelog parent: 6fdc2a01c447ff08d06588221132d10f6050a7ae

New changelog entries:
  * Added Galician debconf translation. (Closes: #412492)
    Thanks Jacobo Tarrio
  * Updated Swedish debconf translation. (Closes: #407851)
    Thanks Andreas Henriksson
  * Fixed type in Portuguese debconf translation.
  * debian/templates. Changed default value for init.d change
    question to false. (Closes: #403317)

6fdc2a0... by Alberto Gonzalez Iniesta <email address hidden> on 2006-12-08

Import patches-unapplied version 2.0.9-2 to ubuntu/feisty

Imported using git-ubuntu import.

Changelog parent: 95fa0df35d59765a07571780eaa13ea8c6658d4c

New changelog entries:
  * Updated Spanish debconf translation. (Closes: #393796)
  * Updated German debconf translation. (Closes: #397019)
  * Updated Japanese debconf translation. (Closes: #392627)
  * Added Italian debconf translation. (Closes: #398050)
  * Added Portuguese debconf translation. (Closes: #400685)

95fa0df... by Alberto Gonzalez Iniesta <email address hidden> on 2006-10-10

Import patches-unapplied version 2.0.9-1 to ubuntu/feisty

Imported using git-ubuntu import.

Changelog parent: c3f705337a112191b8a20c635f21d58290fa313e

New changelog entries:
  * New upstream release. No changes in *NIX source code.
    Updating to avoid 'New upstream, blah, blah'.
  * debian/control: Fixed spelling error in description
    (Closes: #390242)
  * debian/copyright: Updated project's homepage and author's
    email address. (Closes: #388466)
  * debian/copyright: Updated the FSF address.
  * Updated Dutch debconf translation. (Closes: #389982, 379802)
    Thanks Kurt De Bree
  * Updated Czech debconf translation. (Closes: #384755)
    Thanks Miroslav Kure

c3f7053... by Alberto Gonzalez Iniesta <email address hidden> on 2006-07-22

Import patches-unapplied version 2.0.7-1 to ubuntu/edgy

Imported using git-ubuntu import.

Changelog parent: 676fa1042a4538e68b606df26914878d33d6bc1f

New changelog entries:
  * The 'Translators, translators, translators' release.
  * New upstream version.
  * Added Dutch debconf translation. (Closes: #370073)
    Thanks Kurt De Bree
  * Updated Danish debconf translation. (Closes: #369772, #376704)
    Thanks Claus Hindsgaul
  * Updated French debconf translation. (Closes: #373191)
    Thanks Michel Grentzinger

676fa10... by Alberto Gonzalez Iniesta <email address hidden> on 2006-05-22

Import patches-unapplied version 2.0.6-2 to ubuntu/edgy

Imported using git-ubuntu import.

Changelog parent: f4f2865beb247b7c4b36f5a3857012714a521a22

New changelog entries:
  * The "Mañana" Release.
  * debian/control: Added Suggests: openssl (Closes: #368256)
  * debian/postinst: Run the init.d script with 'start' when doing
    a fresh install or stop2upgrade=true. (Closes: #366085, #338956)
  * Updated Czech debconf translation (Closes: #333989)
    Thanks Miroslav Kure.
  * Bumped Standards-Version to 3.7.2.0, no change.
  * debian/rules: Avoid compressing 'pkitool' (Closes: #354478)
  * debian/templates: Corrected typo on init scripts order change.
    (Closes: #351664)
  * Updated German debconf translation (Closes: #345853)
    Thanks Erik Schanze.

f4f2865... by Alberto Gonzalez Iniesta <email address hidden> on 2006-04-05

Import patches-unapplied version 2.0.6-1 to ubuntu/dapper

Imported using git-ubuntu import.

Changelog parent: 76152937278ef766e05c8a1f82bee82fad65a230

New changelog entries:
  * New upstream release. Urgency high due to security fix.
    - Disallow "setenv" to be pushed to clients from the server.
      (Closes: #360559)
  * New upstream release. Urgency high due to security issues.
      - DoS vulnerability on the server in TCP mode.
        (CVE-2005-3409) (Closes: #337334)
      - Format string vulnerability in the foreign_option
        function in options.c could potentially allow a malicious
        or compromised server to execute arbitrary code on the
        client. (CVE-2005-3393) (Closes: #336751)
  * debian/control: fix Depends on debconf. (Closes: #332056)
  * Bumped Standards-Version to 3.6.2.0, no change.
  * Updated Danish debconf translation. (Closes: #326907)
  * Updated French debconf translation. (Closes: #328076)
  * Added Swedish debconf translation. (Closes: #332785)

7615293... by Alberto Gonzalez Iniesta <email address hidden> on 2005-08-28

Import patches-unapplied version 2.0.2-1 to ubuntu/breezy

Imported using git-ubuntu import.

Changelog parent: 260eb7313d06c76ea43d3431b482484dd767e5a4

New changelog entries:
  * The [VAC] upload. Thanks Vorbis Gdynia for the free internet access :)
  * New upstream release (Closes: #323594)
  * Fixed use of backslash in username authentication. (Closes: #309787)
  * Fixes several DoS vulnerabilities: CAN-2005-2531 CAN-2005-2532
    CAN-2005-2533 CAN-2005-2534. (Closes: #324167)
  * Changed group option from 'nobody' to 'nogroup' in all the
    *example* files... (Closes: #317987)
  * Included openvpn-plugin.h to allow building third party plugins.
    (Closes: #316139)
  * Stop openvpn's daemon later to allow some services stopping later to use
    it. Added debconf template to ask permission to make the change
    on older installations. (Closes: #312371)
  * Workaround to fix proper daemonize when 'log' option is used.
    (Closes: #309944) Thanks Jason Lunz for the patch.
  * Modified output of init.d script to make it more friendly when
    passphrase for a tunnel certificate is asked.
    Thanks Pavel Vávra for the patch.
  * The 'It was about time I could make a new upload' release
  * Rewrote some debconf templates (Closes: #316694).
    Thanks Clytie Siddall for the corrections.
  * Included Vietnamese debconf translation. (Closes: #316695)
  * debian/rules: exclude openssl.cnf from being compress.
    (Closes: #315764)
  * postinst: call 'restart' when 'cond-restart' fails due to user
    not upgrading the init.d script. (Closes: #308926)
  * Added '-f' to rm when deleting the status file. This eliminates
    the need to test if it exists and saves the init.d script from
    failing. (Closes: #306588)
  * Modified pam plugin to load libpam.so.0 instead of libpam.so.
    (Closes: #306335)
  * The 'This-is-the-real-2.0' release
  * New upstream version.
  * openvpn.8: s/--/\\-\\-/g a.k.a escaped dashes to make it possible
    to search for options with UTF charsets. (Closes: #296133)
  * Improved init.d script output. (Closes: #297997)
    Thanks Thomas Hood for the patch.
  * debian/control. Rewrote Description: field.
    Now it's more useful and complete. (Closes: #304895)
  * init.d script:
     - Fixed restarting of multiple VPNs
     - Fixed TAB converted to spaces.
     - Remove status file on VPN stop
     - Respect 'status' option if given in the config file
     - New /etc/default/openvpn configuration file that allows
       control on which VPNs are automatically started and also
       controls status file refresh interval
     Thanks Philipp A. Hartmann for the nice patch. (Closes: #294332)
   * init.d script: Added cond-restart to only restart VPNs in use.
     postint: Call init.d script with cond-restart instead of restart.
     (Closes: #280464)
   * init.d script: change order of --config and --cd to permit
     nested 'configs'. (Closes: #299082)
  * New upstream release
  * New upstream release (Closes: #301949)
  * New upstream release
  * New upstream release
  * Added --enable-password-save to configure call to allow
    --askpass and --auth-user-pass passwords to be read from a file.
  * New upstream release
  * Added --status line to init.d script (Closes: #293144)
  * New upstream release
  * Updated pt_BR debconf translation (Closes: #292079)