slackware-current/source/n/openvpn/README

OpenVPN is a full-featured SSL VPN which can accomodate a wide
range of configurations, including remote access, site-to-site VPNs,
WiFi security, and enterprise-scale remote access with load
balancing, failover, and fine-grained access-controls.

OpenVPN implements OSI layer 2 or 3 secure network extension using the
industry standard SSL/TLS protocol, supports flexible client
authentication methods based on certificates, smart cards, and/or
2-factor authentication, and allows user or group-specific access
control policies using firewall rules applied to the VPN virtual
interface.

This build of OpenVPN depends upon having openssl (not just
openssl-solibs) and lzo installed on your computer. 

Please note that there is no default config file for OpenVPN. This is
by design. OpenVPN can technically use any config file in any location.
However, this script does create an /etc/openvpn/ directory with certs/
and keys/ subdirectories. Feel free to place config files, keys, and
certificates in these directories. certs/ and keys/ are owned by user
root and group openvpn and are not world readable nor writable.
Additionally, they are not writable by group openvpn. It is recommended
that you run openvpn openvpn:openvpn, but you may use another
non-privileged user and group at your option. Just change the
permissions on these permissions to reflect that if you do.
Slackware 13.0 Wed Aug 26 10:00:38 CDT 2009 Slackware 13.0 x86_64 is released as stable! Thanks to everyone who helped make this release possible -- see the RELEASE_NOTES for the credits. The ISOs are off to the replicator. This time it will be a 6 CD-ROM 32-bit set and a dual-sided 32-bit/64-bit x86/x86_64 DVD. We're taking pre-orders now at store.slackware.com. Please consider picking up a copy to help support the project. Once again, thanks to the entire Slackware community for all the help testing and fixing things and offering suggestions during this development cycle. As always, have fun and enjoy! -P. 2009-08-26 17:00:38 +02:00			`OpenVPN is a full-featured SSL VPN which can accomodate a wide`
			`range of configurations, including remote access, site-to-site VPNs,`
			`WiFi security, and enterprise-scale remote access with load`
			`balancing, failover, and fine-grained access-controls.`

			`OpenVPN implements OSI layer 2 or 3 secure network extension using the`
			`industry standard SSL/TLS protocol, supports flexible client`
			`authentication methods based on certificates, smart cards, and/or`
			`2-factor authentication, and allows user or group-specific access`
			`control policies using firewall rules applied to the VPN virtual`
			`interface.`

			`This build of OpenVPN depends upon having openssl (not just`
			`openssl-solibs) and lzo installed on your computer.`

			`Please note that there is no default config file for OpenVPN. This is`
			`by design. OpenVPN can technically use any config file in any location.`
			`However, this script does create an /etc/openvpn/ directory with certs/`
Wed Mar 13 19:46:48 UTC 2024 a/etc-15.1-x86_64-9.txz: Rebuilt. Added proftpd user (97) and proftpd group (97). Added nm-openvpn user (320) and nm-openvpn group (320). Added openvpn user (443) and openvpn group (443). Added overflowuid user (65534) and overflowgid group (65534). Thanks to opty for encouraging us to think about nobody. d/meson-1.4.0-x86_64-1.txz: Upgraded. d/python-setuptools-69.2.0-x86_64-1.txz: Upgraded. l/expat-2.6.2-x86_64-1.txz: Upgraded. Prevent billion laughs attacks with isolated use of external parsers. For more information, see: https://github.com/libexpat/libexpat/commit/1d50b80cf31de87750103656f6eb693746854aa8 https://www.cve.org/CVERecord?id=CVE-2024-28757 (* Security fix *) l/pipewire-1.0.4-x86_64-1.txz: Upgraded. l/python-zipp-3.18.0-x86_64-1.txz: Upgraded. n/openvpn-2.6.9-x86_64-2.txz: Rebuilt. Run as openvpn:openvpn. Thanks to rkelsen. n/proftpd-1.3.8b-x86_64-2.txz: Rebuilt. Run as proftpd:proftpd. x/libva-2.21.0-x86_64-1.txz: Upgraded. x/libva-utils-2.21.0-x86_64-1.txz: Upgraded. xap/NetworkManager-openvpn-1.10.2-x86_64-2.txz: Rebuilt. Run as nm-openvpn:nm-openvpn. Thanks to Markus Wiesner. 2024-03-13 20:46:48 +01:00			`and keys/ subdirectories. Feel free to place config files, keys, and`
Slackware 13.0 Wed Aug 26 10:00:38 CDT 2009 Slackware 13.0 x86_64 is released as stable! Thanks to everyone who helped make this release possible -- see the RELEASE_NOTES for the credits. The ISOs are off to the replicator. This time it will be a 6 CD-ROM 32-bit set and a dual-sided 32-bit/64-bit x86/x86_64 DVD. We're taking pre-orders now at store.slackware.com. Please consider picking up a copy to help support the project. Once again, thanks to the entire Slackware community for all the help testing and fixing things and offering suggestions during this development cycle. As always, have fun and enjoy! -P. 2009-08-26 17:00:38 +02:00			`certificates in these directories. certs/ and keys/ are owned by user`
Wed Mar 13 19:46:48 UTC 2024 a/etc-15.1-x86_64-9.txz: Rebuilt. Added proftpd user (97) and proftpd group (97). Added nm-openvpn user (320) and nm-openvpn group (320). Added openvpn user (443) and openvpn group (443). Added overflowuid user (65534) and overflowgid group (65534). Thanks to opty for encouraging us to think about nobody. d/meson-1.4.0-x86_64-1.txz: Upgraded. d/python-setuptools-69.2.0-x86_64-1.txz: Upgraded. l/expat-2.6.2-x86_64-1.txz: Upgraded. Prevent billion laughs attacks with isolated use of external parsers. For more information, see: https://github.com/libexpat/libexpat/commit/1d50b80cf31de87750103656f6eb693746854aa8 https://www.cve.org/CVERecord?id=CVE-2024-28757 (* Security fix *) l/pipewire-1.0.4-x86_64-1.txz: Upgraded. l/python-zipp-3.18.0-x86_64-1.txz: Upgraded. n/openvpn-2.6.9-x86_64-2.txz: Rebuilt. Run as openvpn:openvpn. Thanks to rkelsen. n/proftpd-1.3.8b-x86_64-2.txz: Rebuilt. Run as proftpd:proftpd. x/libva-2.21.0-x86_64-1.txz: Upgraded. x/libva-utils-2.21.0-x86_64-1.txz: Upgraded. xap/NetworkManager-openvpn-1.10.2-x86_64-2.txz: Rebuilt. Run as nm-openvpn:nm-openvpn. Thanks to Markus Wiesner. 2024-03-13 20:46:48 +01:00			`root and group openvpn and are not world readable nor writable.`
			`Additionally, they are not writable by group openvpn. It is recommended`
			`that you run openvpn openvpn:openvpn, but you may use another`
			`non-privileged user and group at your option. Just change the`
Slackware 13.0 Wed Aug 26 10:00:38 CDT 2009 Slackware 13.0 x86_64 is released as stable! Thanks to everyone who helped make this release possible -- see the RELEASE_NOTES for the credits. The ISOs are off to the replicator. This time it will be a 6 CD-ROM 32-bit set and a dual-sided 32-bit/64-bit x86/x86_64 DVD. We're taking pre-orders now at store.slackware.com. Please consider picking up a copy to help support the project. Once again, thanks to the entire Slackware community for all the help testing and fixing things and offering suggestions during this development cycle. As always, have fun and enjoy! -P. 2009-08-26 17:00:38 +02:00			`permissions on these permissions to reflect that if you do.`