Bug#632644: openvpn: Please add exporting KEY_OU in examples/easy-rsa/2.0/vars

Mon, 04 Jul 2011 04:48:23 -0700 

Package: openvpn
Version: 2.1.3-2
Severity: minor

Hello,

Recently I've installed OpenVPN on my Debian Squeeze box and used
usefull scripts from /usr/share/doc/openvpn/examples/easy-rsa/2.0/
for generating my SSL certificates. However at first I was really
confused when I couldn't see in the vars file any environment variable
for setting OU attribute... Fortunately the pkitool script supports it,
but I had to export KEY_OU variable. My trivial patch is below:

--- vars.orig   2011-07-01 16:43:47.209516729 +0000
+++ vars        2011-07-01 16:44:41.305513445 +0000
@@ -65,4 +65,5 @@
 export KEY_PROVINCE="CA"
 export KEY_CITY="SanFrancisco"
 export KEY_ORG="Fort-Funston"
+export KEY_OU="BatteryDavies"
 export KEY_EMAIL="me@myhost.mydomain"

I think it can be helpful for other bewildered users as well. Of course,
you can comment it for backward compatibility ;)

-- System Information:
Debian Release: 6.0.2
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.32-5-xen-amd64 (SMP w/1 CPU core)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages openvpn depends on:
ii  debconf [debconf-2.0]   1.5.36.1         Debian configuration
management sy
ii  libc6                   2.11.2-10        Embedded GNU C Library:
Shared lib
ii  liblzo2-2               2.03-2           data compression library
ii  libpam0g                1.1.1-6.1        Pluggable Authentication
Modules l
ii  libpkcs11-helper1       1.07-1           library that simplifies the
intera
ii  libssl0.9.8             0.9.8o-4squeeze1 SSL shared libraries
ii  net-tools               1.60-23          The NET-3 networking toolkit
ii  openssl-blacklist       0.5-2            list of blacklisted OpenSSL
RSA ke
ii  openvpn-blacklist       0.4              list of blacklisted OpenVPN
RSA sh

openvpn recommends no packages.

Versions of packages openvpn suggests:
ii  openssl                 0.9.8o-4squeeze1 Secure Socket Layer (SSL)
binary a
pn  resolvconf              <none>           (no description available)

-- debconf information:
  openvpn/vulnerable_prng:
  openvpn/create_tun: false





-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Reply via email to