mirror of
git://slackware.nl/current.git
synced 2024-12-27 09:59:16 +01:00
47e3f5d9c3
a/etc-15.1-x86_64-9.txz: Rebuilt.
Added proftpd user (97) and proftpd group (97).
Added nm-openvpn user (320) and nm-openvpn group (320).
Added openvpn user (443) and openvpn group (443).
Added overflowuid user (65534) and overflowgid group (65534).
Thanks to opty for encouraging us to think about nobody.
d/meson-1.4.0-x86_64-1.txz: Upgraded.
d/python-setuptools-69.2.0-x86_64-1.txz: Upgraded.
l/expat-2.6.2-x86_64-1.txz: Upgraded.
Prevent billion laughs attacks with isolated use of external parsers.
For more information, see:
1d50b80cf3
https://www.cve.org/CVERecord?id=CVE-2024-28757
(* Security fix *)
l/pipewire-1.0.4-x86_64-1.txz: Upgraded.
l/python-zipp-3.18.0-x86_64-1.txz: Upgraded.
n/openvpn-2.6.9-x86_64-2.txz: Rebuilt.
Run as openvpn:openvpn. Thanks to rkelsen.
n/proftpd-1.3.8b-x86_64-2.txz: Rebuilt.
Run as proftpd:proftpd.
x/libva-2.21.0-x86_64-1.txz: Upgraded.
x/libva-utils-2.21.0-x86_64-1.txz: Upgraded.
xap/NetworkManager-openvpn-1.10.2-x86_64-2.txz: Rebuilt.
Run as nm-openvpn:nm-openvpn. Thanks to Markus Wiesner.
26 lines
1.3 KiB
Text
26 lines
1.3 KiB
Text
OpenVPN is a full-featured SSL VPN which can accomodate a wide
|
|
range of configurations, including remote access, site-to-site VPNs,
|
|
WiFi security, and enterprise-scale remote access with load
|
|
balancing, failover, and fine-grained access-controls.
|
|
|
|
OpenVPN implements OSI layer 2 or 3 secure network extension using the
|
|
industry standard SSL/TLS protocol, supports flexible client
|
|
authentication methods based on certificates, smart cards, and/or
|
|
2-factor authentication, and allows user or group-specific access
|
|
control policies using firewall rules applied to the VPN virtual
|
|
interface.
|
|
|
|
This build of OpenVPN depends upon having openssl (not just
|
|
openssl-solibs) and lzo installed on your computer.
|
|
|
|
Please note that there is no default config file for OpenVPN. This is
|
|
by design. OpenVPN can technically use any config file in any location.
|
|
However, this script does create an /etc/openvpn/ directory with certs/
|
|
and keys/ subdirectories. Feel free to place config files, keys, and
|
|
certificates in these directories. certs/ and keys/ are owned by user
|
|
root and group openvpn and are not world readable nor writable.
|
|
Additionally, they are not writable by group openvpn. It is recommended
|
|
that you run openvpn openvpn:openvpn, but you may use another
|
|
non-privileged user and group at your option. Just change the
|
|
permissions on these permissions to reflect that if you do.
|
|
|