Package: openvpn Version: 2.1~rc7-1 Severity: important In a low privilege, dynamic setup with:
... user nobody client-connect some-script.sh current (and maybe previous) openvpn sheds privileges before executing script. But unfortunately, path on script's $1 is relative to his pwd. So in debian, with daemon started per default on --cd /etc/openvpn, this option become unusable unless i override it with explicit --cd in my conf file. I'm also not so happy to have nobody generated config snippets on /tmp, so i'd rather prefer a /var/run/openvpn owned by openvpn user, where write temporary conf files. In any case, i think this can have a note on README.Debian, making easier to understand for client-connect wannabes like me :P cheers, ale -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (1, 'experimental') Architecture: i386 (i686) Kernel: Linux 2.6.24-1-686 (SMP w/2 CPU cores) Locale: LANG=it_IT.UTF-8, LC_CTYPE=it_IT.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages openvpn depends on: ii cdebconf [debconf-2.0] 0.130 Debian Configuration Management Sy ii debconf [debconf-2.0] 1.5.20 Debian configuration management sy ii libc6 2.7-10 GNU C Library: Shared libraries ii liblzo2-2 2.02-3 data compression library ii libpam0g 0.99.7.1-6 Pluggable Authentication Modules l ii libssl0.9.8 0.9.8g-8 SSL shared libraries openvpn recommends no packages. -- debconf information: openvpn/change_init: false openvpn/change_init2: false openvpn/create_tun: false * openvpn/stop2upgrade: false openvpn/default_port: -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]