On Wed, Jan 7, 2009 at 11:24 PM, David Rees dree...@gmail.com OK,
here's a tested fix. Seems to work on my system. Looks like you
applied the other fix already, this patch should apply over it.
Thanks. I committed a slightly changed version of your patch (to stop
ntpd correctly).
Scott
So does OpenVPN on pfsense have a known vulnerability, and if so, can we
patch the pfsense servers (running 1.2) as described in the advisory?
- Joel
today's FreeBSD security advisories. The OpenSSL one is potentially
applicable with OpenVPN, so it's being rebuilt with the updates.
On Thu, Jan 8, 2009 at 8:46 PM, JJB onephat...@earthlink.net wrote:
So does OpenVPN on pfsense have a known vulnerability, and if so, can we
patch the pfsense servers (running 1.2) as described in the advisory?
1.2.2 will be released in the next couple of days. It is undergoing
testing now.
On Thu, Jan 8, 2009 at 8:46 PM, JJB onephat...@earthlink.net wrote:
So does OpenVPN on pfsense have a known vulnerability,
Maybe. This:
http://security.freebsd.org/advisories/FreeBSD-SA-09:02.openssl.asc
---
III. Impact
For applications using OpenSSL for SSL connections, an invalid SSL
I just commented on http://cvstrac.pfsense.org/tktview?tn=1859,4 with
a fix. Hopefully this can sneak into 1.2.2 after the fix is confirmed.
Also, Ticket http://cvstrac.pfsense.org/tktview?tn=1617,36 appears to
be fixed in 1.2.1 (which I also commented on)
-Dave
On Wed, Jan 7, 2009 at 8:04 PM, Chris Buechler c...@pfsense.org wrote:
On Wed, Jan 7, 2009 at 10:24 PM, David Rees dree...@gmail.com wrote:
I just commented on http://cvstrac.pfsense.org/tktview?tn=1859,4 with
a fix. Hopefully this can sneak into 1.2.2 after the fix is confirmed.
It was
On Wed, Jan 7, 2009 at 8:12 PM, David Rees dree...@gmail.com wrote:
On Wed, Jan 7, 2009 at 8:04 PM, Chris Buechler c...@pfsense.org wrote:
On Wed, Jan 7, 2009 at 10:24 PM, David Rees dree...@gmail.com wrote:
I just commented on http://cvstrac.pfsense.org/tktview?tn=1859,4 with
a fix. Hopefully
On Wed, Jan 7, 2009 at 11:15 PM, David Rees dree...@gmail.com wrote:
It's not a complete fix, anyway. It actually breaks that other ticket.
:-( I'll look at it more when I get a chance.
That's exactly what I was afraid of, it would break something else.
:) We're confident in the fixes that
On Wed, Jan 7, 2009 at 8:15 PM, David Rees dree...@gmail.com wrote:
On Wed, Jan 7, 2009 at 8:12 PM, David Rees dree...@gmail.com wrote:
On Wed, Jan 7, 2009 at 8:04 PM, Chris Buechler c...@pfsense.org wrote:
On Wed, Jan 7, 2009 at 10:24 PM, David Rees dree...@gmail.com wrote:
I just commented