Bug#954264: openvpn-auth-radius: Support for verify-client-cert openvpn 2.4 directive
Package: openvpn-auth-radius
Version: 2.1-7
Severity: normal
Tags: upstream
Dear Maintainer,
the current version only checks for the 'client-cert-not-required' directive in
the openvpn server configuration. This directive has become deprecated since
version 2.4 of openvpn.
A potential fix has been discussed at the corresponding github issue #14.
A currently available remedy for users is to include both the
'client-cert-not-required' and the 'verify-client-cert [none|optional]'
directives in the server configuration. This works for openvpn version 2.4, as
the option is marked as deprecated, but will stop working for version >=2.5.
All the best.
-- System Information:
Debian Release: 10.3
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)
Kernel: Linux 4.19.0-8-amd64 (SMP w/1 CPU core)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE=en_US:en (charmap=UTF-8)
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
Versions of packages openvpn-auth-radius depends on:
ii libc6 2.28-10
ii libgcc1 1:8.3.0-6
ii libgcrypt20 1.8.4-5
ii libstdc++6 8.3.0-6
ii openvpn 2.4.7-1
openvpn-auth-radius recommends no packages.
openvpn-auth-radius suggests no packages.
-- no debconf information
Reply to: