Hi, On 27/06/18 09:50, Antonio Quartulli wrote: > Hi, > > On 27/06/18 05:33, David Sommerseth wrote: >> On 05/06/18 10:14, Antonio Quartulli wrote: >>> In preparation to having tls-auth/crypt keys per connection >>> block, it is important to ensure that such material is always >>> reloaded upon SIGUSR1, no matter if `persist-key` was specified >>> or not. >> >> Has this been tested with --chroot and --user/--group? > > No, these tests are missing.
Tests performed. There is no change in behaviour: --chroot and --user/--group behave exactly as now. This was expected as using persist-key will instruct openvpn to cache the key material and thus it can be reused to re-init the various SSL context every time. Cheers, -- Antonio Quartulli
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________ Openvpn-devel mailing list Openvpn-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-devel