source file. They cannot include it, because the kernel route
structure has a name conflict with the openvpn route structure.
The obvious solution is to rename the openvpn route. According to
the sources, NetBSD and FreeBSD and Dragonfly also suffer from that.
This change is needed for an upcoming routing message change. We
do not want to patch the port each time when we change the system
header file.
Test and OK sthen@
OpenVPN port, "exec" was added to route(8) which provides the same support
in a more general way. use a command like this instead:
"route -T <table#> exec openvpn -daemon ..."
to start OpenVPN; this sidesteps a problem where openvpn destroys and re-
creates the tun interface, which affects PF/altq.
- shorten DESCR to better fit 80x24
ok fkr@ (maintainer).
to talk to the routing socket to get the default gateway.
Instead of pulling in net/route.h they copied parts of the contents into
their code. Update the needed bits to make it work again.
OK fkr@, jasper@ and Thomas Delaet (maintainer)
- remove USE_GMAKE because it is not needed
- use a different method for installing the sample config files to prevent
installing .orig files left behind after patching
- bump PKGNAME
* Security Vulnerability affecting OpenVPN 2.0 through 2.0.5.
An OpenVPN client connecting to a
malicious or compromised server could potentially receive
"setenv" configuration directives from the server which could
cause arbitrary code execution on the client via a LD_PRELOAD
attack.
Detailed information: http://openvpn.net/changelog.html
ok Thomas Delaet <thomas at delaet.org> (MAINTAINER)
- Format string vulnerability in the foreign_option function in options.c.
(CVE-2005-3393)
- Potential DoS vulnerability on the server in TCP mode. (CVE-2005-3409)
More info:
http://openvpn.net/changelog.html
"just do it" pvalchev@
* Fixed bug in route.c in FreeBSD, Darwin, OpenBSD and NetBSD
version of get_default_gateway. Allocated socket for route
manipulation is never freed so number of mbufs continuously
grow and exhaust system resources after a while (Jaroslav Klaus).
ok pvalchev@
OpenVPN is an easy-to-use, robust, and highly configurable VPN (Virtual
Private Network) daemon which can be used to securely link two or more
private networks using an encrypted tunnel over the internet.
WWW: http://openvpn.sourceforge.net/
from Jorge A. Cortes Montiel <jcortes at bsdcoders dot org>
