G'day sluggers, I updated openvpn on a Ubuntu Feisty server today and discovered that the openvpn server wouldn't allow incoming connections (tried with two different clients). This message appears in syslog when a client tries to connect.
May 14 16:45:46 dropbear openvpn[17945]: 59.167.42.155:33826 ERROR: '/etc/openvpn/easy-rsa/keys/server.key' is a known vulnerable key. See 'man openssl-vulnkey' for details. However, when I run openssl-vulnkey on that key file, it says that the key is not blacklisted. The key was not generated on a Debian or Ubuntu system, nor was it generated with a faulty version of openssl. Has anyone else encountered a similar problem? Any ideas why openvpn doesn't like my key even though it's own vulnerability checker says it's OK? Thanks, John -- If it wasn't for CodeRed, my web server would have no-one to talk to. -- Graham Reed -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html