Bug#848516: ocserv: Don't connect clients. GnuTLS error: Failed to acquire random data.
Control: forcemerge 839937 -1 On Sat, Dec 17, 2016 at 22:34:50 +, Ехенов Роман wrote: > Followup-For: Bug #839937 > Package: ocserv > Version: 0.11.4-1+b2 > > Dear Maintainer, If you could provide some details with bug reports in the future, that would be more helpful. As it is, since it's marked as a followup on #839937, not sure why it was sent as a separate report, but I'm merging it. -- mike
Bug#848516: ocserv: Don't connect clients. GnuTLS error: Failed to acquire random data.
Followup-For: Bug #839937 Package: ocserv Version: 0.11.4-1+b2 Dear Maintainer, *** Reporter, please consider answering these questions, where appropriate *** * What led up to the situation? * What exactly did you do (or not do) that was effective (or ineffective)? * What was the outcome of this action? * What outcome did you expect instead? *** End of the template - remove these template lines *** -- System Information: Debian Release: stretch/sid APT prefers testing APT policy: (500, 'testing') Architecture: i386 (i686) Kernel: Linux 4.8.0-1-686-pae (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages ocserv depends on: ii dbus 1.10.14-1 ii init-system-helpers 1.46 ii libc62.24-7 ii libev4 1:4.22-1 ii libgnutls30 3.5.6-7 ii libgssapi-krb5-2 1.15~beta1-1 ii libhttp-parser2.12.1-2 ii liblz4-1 0.0~r131-2 ii libnettle6 3.3-1 ii libnl-3-200 3.2.27-1 ii libnl-route-3-2003.2.27-1 ii liboath0 2.6.1-1 ii libopts251:5.18.12-3 ii libpam0g 1.1.8-3.3 ii libpcl1 1.6-1.1 ii libprotobuf-c1 1.2.1-2 ii libradcli4 1.2.6-4 ii libreadline7 7.0-1 ii libseccomp2 2.3.1-2.1 ii libsystemd0 232-7 ii libtalloc2 2.1.8-1 ii libtasn1-6 4.9-4 ii libwrap0 7.6.q-25 ii ssl-cert 1.0.38 Versions of packages ocserv recommends: ii ca-certificates 20161102 ocserv suggests no packages. -- Configuration Files: /etc/ocserv/ocserv.conf changed: auth = "pam[gid-min=1000]" listen-host = 91.217.8.105 tcp-port = 443 udp-port = 443 run-as-user = nobody run-as-group = daemon socket-file = /var/run/ocserv-socket server-cert = /etc/ssl/certs/ssl-cert-snakeoil.pem server-key = /etc/ssl/private/ssl-cert-snakeoil.key ca-cert = /etc/ssl/certs/ssl-cert-snakeoil.pem isolate-workers = true max-clients = 100 max-same-clients = 2 keepalive = 32400 dpd = 90 mobile-dpd = 1800 try-mtu-discovery = false cert-user-oid = 0.9.2342.19200300.100.1.1 tls-priorities = "NORMAL:%SERVER_PRECEDENCE:%COMPAT:-VERS-SSL3.0" auth-timeout = 40 min-reauth-time = 3 max-ban-score = 50 ban-reset-time = 300 cookie-timeout = 300 cookie-rekey-time = 14400 deny-roaming = false rekey-time = 172800 rekey-method = ssl use-utmp = true use-occtl = true pid-file = /var/run/ocserv.pid device = vpns predictable-ips = true default-domain = ivoin.ru ipv4-network = 192.168.1.0 ipv4-netmask = 255.255.255.0 dns = 192.168.1.2 ping-leases = false route = 10.0.0.0/255.0.0.0 route = 172.16.0.0/255.240.0.0 route = 192.168.0.0/255.255.0.0 cisco-client-compat = true -- no debconf information