This bug was fixed in the package openvpn - 2.4.6-1ubuntu2.2
---
openvpn (2.4.6-1ubuntu2.2) cosmic; urgency=medium
* d/p/lp-1828771-CapabilityBoundingSet-for-auth_pam.patch: Add CAP_AUDIT_WRITE
to upstreams set of .service files to avoid issues with callout scripts
breaking
This bug was fixed in the package openvpn - 2.4.4-2ubuntu1.3
---
openvpn (2.4.4-2ubuntu1.3) bionic; urgency=medium
* d/p/lp-1828771-CapabilityBoundingSet-for-auth_pam.patch: Add CAP_AUDIT_WRITE
to upstreams set of .service files to avoid issues with callout scripts
breaking
This bug was fixed in the package openvpn - 2.4.6-1ubuntu3.1
---
openvpn (2.4.6-1ubuntu3.1) disco; urgency=medium
* d/p/lp-1828771-CapabilityBoundingSet-for-auth_pam.patch: Add CAP_AUDIT_WRITE
to upstreams set of .service files to avoid issues with callout scripts
breaking
Copy the keys to /etc/openvpn/server / /etc/openvpn/client respectively
clients:
sudo mv client.conf ca.crt ca.key ta.key client/; sudo mv client1.crt
client/client.crt; sudo mv client1.key client/client.key
server:
sudo mv dh.pem ca.crt server.crt server.key ta.key server
Finally set up the
For the tests/verifications I created the keys for this just once on a cosmic
test system, and reused the certificates on all nodes that participated in the
test.
This time I followed
https://www.digitalocean.com/community/tutorials/how-to-set-up-an-openvpn-server-on-ubuntu-18-04
For the sake
Hello Christian, or anyone else affected,
Accepted openvpn into cosmic-proposed. The package will build now and be
available at
https://launchpad.net/ubuntu/+source/openvpn/2.4.6-1ubuntu2.2 in a few
hours, and then in the -proposed repository.
Please help us by testing this new package. See
Yeah you are right Lukasz, I have seen the ping on the other bug by Raof.
Let me ask Joy how she wants to proceed with the one in proposed - thanks for
the hint.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
There seems to already be an openvpn SRU in progress for cosmic -
awaiting verification. I will only be able to accept this one once the
other is released or if the package is re-uploaded with -v to include
the other SRU in it (after coordinating it with the previous uploader).
--
You received
This also waits in Bionic and Cosmic.
I'll wait with verification until those are accepted as well (for efficiency)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1828771
Title:
Add CAP_AUDIT_WRITE
Hello Christian, or anyone else affected,
Accepted openvpn into disco-proposed. The package will build now and be
available at
https://launchpad.net/ubuntu/+source/openvpn/2.4.6-1ubuntu3.1 in a few
hours, and then in the -proposed repository.
Please help us by testing this new package. See
Added SRU Template, based on the older bug.
Pushed tags and sponsored for the SRU-Teams review.
** Description changed:
+ [Impact]
+
+ * non-default but still common openvpn setups use callout scripts with
+sudo (if the openvpn user was set up to work with sudo). That breaks in
+
** Merge proposal linked:
https://code.launchpad.net/~paelzer/ubuntu/+source/openvpn/+git/openvpn/+merge/367393
** Merge proposal linked:
https://code.launchpad.net/~paelzer/ubuntu/+source/openvpn/+git/openvpn/+merge/367394
--
You received this bug notification because you are a member
** Merge proposal linked:
https://code.launchpad.net/~paelzer/ubuntu/+source/openvpn/+git/openvpn/+merge/367390
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1828771
Title:
Add CAP_AUDIT_WRITE
the upstream change that fixes it in the upstream files (we have waited for the
discussion there to conclude):
=>
https://github.com/OpenVPN/openvpn/commit/a564781cfd9912d0f755394d1fa610706d93e707
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is
** Description changed:
For a while openvpn is haunted by having two sets of services a bunch
from upstream and pair from the debian packaging.
Every now and then changes fix one but miss the other.
In this case the fix for bug 1787208 was only applied to the former
-
This bug was fixed in the package openvpn - 2.4.7-1ubuntu1
---
openvpn (2.4.7-1ubuntu1) eoan; urgency=medium
* Merge with Debian unstable (LP: #1828771). Remaining changes:
- d/control: Demote easy-rsa to Suggests (universe package).
- debian/openvpn@.service: Add
** Changed in: openvpn (Ubuntu Eoan)
Status: Triaged => In Progress
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1828771
Title:
Add CAP_AUDIT_WRITE to non-upstream services
To manage
** Merge proposal linked:
https://code.launchpad.net/~paelzer/ubuntu/+source/openvpn/+git/openvpn/+merge/367349
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1828771
Title:
Add CAP_AUDIT_WRITE
** Changed in: openvpn (Debian)
Status: Unknown => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1828771
Title:
Add CAP_AUDIT_WRITE to non-upstream services
To manage
Fixed in 2.4.7-1 so we could/should start with a Merge for Eoan.
** Also affects: openvpn (Ubuntu Eoan)
Importance: Undecided
Status: New
** Also affects: openvpn (Ubuntu Bionic)
Importance: Undecided
Status: New
** Also affects: openvpn (Ubuntu Disco)
Importance:
20 matches
Mail list logo
