|
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
|
Re: [PLUG] openvpn on fc12
|
http://openvpn.net/index.php/open-source/documentation/howto.html#auth
Assuming you are authenticating with PAM. Multi-domain authentication would depend on the authentication system you are using.
--------------------------------------------------
Brian Vagnoni
PGP Digital Fingerprint
F076 6EEE 06E5 BEEF EBBD BD36 F29E 850D FC32 3955
--------------------------------------------------
----- Original Message -----
From: Carl Johnson
[mailto:cjohnson19791979@gmail.com]
To: Philadelphia Linux User's
Group Discussion List [mailto:plug@lists.phillylinux.org]
Sent: Sun,
17 Jan 2010 22:54:06 -0500
Subject: Re: [PLUG] openvpn on fc12
> ok now i can connect just fine as a user if i "su" first. what do i
> have to
> do to be able to give user permissions?
>
> On Sun, Jan 17, 2010 at 10:11 PM, Carl Johnson
> <cjohnson19791979@gmail.com>wrote:
>
> > ok got it sorted. i'm an idiot. thanks everyone. turns out i was
> editing
> > the config file in gedit and not saving the changes. seems as though
> the
> > "tun0" change fixed it.
> > i proved that by running
> >
> > [root@cjohnson openvpn]# openvpn --rmtun --dev tap0
> > Sun Jan 17 22:00:18 2010 TUN/TAP device tap0 opened
> > Sun Jan 17 22:00:18 2010 Persist state set to: OFF
> >
> > before testing it again. i'm going to drop back to the user account
> and try
> > again in a minute.
> >
> >
> > [root@cjohnson openvpn]# more roadwarrior.conf
> > tls-client
> > pull
> > dev tun0
> >
> > proto udp
> > explicit-exit-notify 2
> > tun-mtu 1500
> > remote obfu.sca.ted
> > pkcs12 roadwarrior.p12
> >
> > cipher BF-CBC
> > comp-lzo
> > verb 3
> > ns-cert-type server
> > port 1234
> >
> > log-append /tmp/openvpn.log
> > [root@cjohnson openvpn]#
> >
> >
> > On Sun, Jan 17, 2010 at 9:54 PM, brent timothy saner <
> > brent.saner@gmail.com> wrote:
> >
> >> -----BEGIN PGP SIGNED MESSAGE-----
> >> Hash: SHA1
> >>
> >> On 01/17/10 20:44, Carl Johnson wrote:
> >> > still no change
> >> >
> >>
> >> whoops; just realized i keep sending you posts off-list.
> >>
> >> here's my latest email (to the list this time!)
> >>
> >>
> >>
> >> On 01/17/10 20:34, Carl Johnson wrote:
> >> > > usr and group commented out
> >> > > changed "dev tun" to dev tun0"
> >> > > selinux and iptables are both disabled/down on this client
> machine.
> >> > >
> >> > > no change :-\
> >>
> >>
> >> well.. shit. okay, not giving up yet.
> >>
> >> wondering if ovpn is suid.
> >>
> >> ls -l `which openvpn`
> >>
> >>
> >> p.s. can you add:
> >> verb 5
> >> log-append /tmp/openvpn.log
> >>
> >> to the client conf, and then paste the log file after it runs here?
> i
> >> have a sneaking suspicion that it's quite possibly another issue
> that's
> >> not entirely related to permissions at all, despite the error
> message.
> >>
> >> OH! and yum info openvpn would be a HUGE help, too
> >>
> >>
> >>
> >>
> >>
> >> i'll maybe load up a fedora 12 VM tonight and see if i can
> replicate the
> >> issue and maybe develop a fix/solution for it.
> >> -----BEGIN PGP SIGNATURE-----
> >> Version: GnuPG v2.0.14 (GNU/Linux)
> >> Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
> >>
> >> iEYEARECAAYFAktTzWwACgkQ8u2Zh4MtlQpAuQCeOQN01bdYd9drr4vwEioM6b3h
> >> jyMAn0Q6cdavOfQ+ctwV/1Opzq8yQiq0
> >> =E5TW
> >> -----END PGP SIGNATURE-----
> >>
> >>
> ___________________________________________________________________________
> >> Philadelphia Linux Users Group --
> >> http://www.phillylinux.org
> >> Announcements -
> >> http://lists.phillylinux.org/mailman/listinfo/plug-announce
> >> General Discussion --
> >> http://lists.phillylinux.org/mailman/listinfo/plug
> >>
> >
> >
>
___________________________________________________________________________
Philadelphia Linux Users Group -- http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug
|
|