On 10/01/14 22:30, Gert Doering wrote: > See trac#218 > > Signed-off-by: Gert Doering <g...@greenie.muc.de> > --- > doc/openvpn.8 | 7 +++++++ > 1 file changed, 7 insertions(+) > > diff --git a/doc/openvpn.8 b/doc/openvpn.8 > index 7736c63..94fd00e 100644 > --- a/doc/openvpn.8 > +++ b/doc/openvpn.8 > @@ -2097,6 +2097,13 @@ In many cases, the > parameter can point to an empty directory, however > complications can result when scripts or restarts > are executed after the chroot operation. > + > +Note: if OpenVPN is built using the PolarSSL SSL > +library, it will only work if a /dev/urandom device > +node is available inside the chroot directory. This > +is due to the way PolarSSL works (it wants to open > +/dev/urandom every time randomness is needed, not just > +once at startup) and nothing OpenVPN can influence. > .\"********************************************************* > .TP > .B \-\-setcon context
ACK. Just a tiny nit-pick, "PolarSSL SSL library", isn't it better to say "PolarSSL library"? -- kind regards, David Sommerseth
signature.asc
Description: OpenPGP digital signature
