Full-featured SSL VPN solution using a TUN/TAP Interface
OpenVPN is a full-featured SSL VPN solution which can accommodate a wide
range of configurations, including remote access, site-to-site VPNs,
WiFi security, and enterprise-scale remote access solutions with load
balancing, failover, and fine-grained access-controls.
OpenVPN implements OSI layer 2 or 3 secure network extension using the
industry standard SSL/TLS protocol, supports flexible client
authentication methods based on certificates, smart cards, and/or
2-factor authentication, and allows user or group-specific access
control policies using firewall rules applied to the VPN virtual
interface.
OpenVPN runs on: Linux, Windows 2000/XP and higher, OpenBSD, FreeBSD,
NetBSD, Mac OS X, and Solaris.
OpenVPN is not a web application proxy and does not operate through a
web browser.
- Developed at network:vpn
- Sources inherited from project openSUSE:Factory
-
6
derived packages
- Download package
-
Checkout Package
osc -A https://api.opensuse.org checkout openSUSE:Factory:Rebuild/openvpn && cd $_ - Create Badge
Source Files
| Filename | Size | Changed |
|---|---|---|
|
0001-preform-deferred-authentication-in-the-backgr |
0000004804 4.69 KB | |
| client-netconfig.down | 0000001043 1.02 KB | |
| client-netconfig.up | 0000002188 2.14 KB | |
| openvpn-2.3-plugin-man.dif | 0000000703 703 Bytes | |
|
openvpn-2.3.9-Fix-heap-overflow-on-getaddrinfo-res |
0000002614 2.55 KB | |
|
openvpn-2.3.x-fixed-multiple-low-severity-issues.p |
0000009319 9.1 KB | |
| openvpn-2.4.6.tar.xz | 0000943376 921 KB | |
| openvpn-2.4.6.tar.xz.asc | 0000000833 833 Bytes | |
| openvpn-fips140-2.3.2.patch | 0000003907 3.82 KB | |
| openvpn-tmpfile.conf | 0000000032 32 Bytes | |
| openvpn.README.SUSE | 0000000821 821 Bytes | |
| openvpn.changes | 0000050086 48.9 KB | |
| openvpn.init | 0000008255 8.06 KB | |
| openvpn.keyring | 0000021168 20.7 KB | |
| openvpn.service | 0000000465 465 Bytes | |
| openvpn.spec | 0000010507 10.3 KB | |
| openvpn.sysconfig | 0000000552 552 Bytes | |
| openvpn.target | 0000000097 97 Bytes | |
| rcopenvpn | 0000000553 553 Bytes |
Revision 81 (latest revision is 115)
Dominique Leuenberger (dimstar_suse)
accepted
request 601900
from
Reinhard Max (rmax)
(revision 81)
- Update to 2.4.6:
* CVE-2018-9336, bsc#1090839: Fix potential double-free() in
Interactive Service
* Delete the IPv6 route to the "connected" network on tun close
* Management: warn about password only when the option is in use
* Avoid overflow in wakeup time computation
- Remove --askpass again, because it was also asking for a password
when none was needed. As a workaround for keys that need a
password, the "askpass" statement should be added to the config
file (bsc#1078026).
- Use Type=notify in openvpn.service to reflect what openvpn is
actually doing.
- Import the new signing key from upstream.
- Remove obsolete configure switch --enable-password-save .
- Update to 2.4.5
* New features
+ The new option --tls-cert-profile can be used to restrict the
set of allowed crypto algorithms in TLS certificates in mbed
TLS builds. The default profile is 'legacy' for now, which
allows SHA1+, RSA-1024+ and any elliptic curve certificates.
The default will be changed to the 'preferred' profile in the
future, which requires SHA2+, RSA-2048+ and any curve.
+ openvpnserv: Add support for multi-instances (to support
multiple parallel OpenVPN installations, like EduVPN and
regular OpenVPN)
+ Use P_DATA_V2 for server->client packets too (better packet
alignment)
+ improve management interface documentation
Comments 0