This smells a bit off if I'm completely honest.
I'd do some things like;
1) Check you've not got any dot-files in that configuration directory
(something like /etc/openvpn/.conf) and if you have move them out
2) Confirm the md5 sum of the binary against the binary on a "known-good"
system
3) Using something like curl or wget, what sort of headers do you get from
:80 and :443, particularly around what it is presenting itself as (does it
show apache, or something else?)
4) Remove and re-install the OpenVPN binary, and see whether the same
behaviour is presented
It feels like either there's a config file it's picking up that it
shouldn't be (which is either port-sharing or seizing the port without
identifying that it's down on startup), or that there's something
unauthorized going on in the binary. Everything, from what I've seen here,
looks OK on the surface, but as I said, I'm not involved in the project, so
this isn't canonical information from the source.
--
Jon "The Nice Guy" Spriggs
On 7 May 2013 17:04, Steve Pallen <smpalle...@yahoo.com> wrote:
> Everything looks ok from a binaries perspective
>
> [root@localhost ~]# which openvpn
> /usr/sbin/openvpn
>
> [root@localhost ~]# which service
> /sbin/service
>
> /etc/init.d/openvpn shows /usr/sbin/openvpn as the command.
>
> [root@localhost ~]# ls /etc/openvpn
> ca.crt CEF7E9B8-CAF6E7F5-3B055E97-98622E26-6BC59748.crt
> CEF7E9B8-CAF6E7F5-3B055E97-98622E26-6BC59748.key client.conf
>
> Anyone else have any ideas where I look next?
>
> Thanks,
> Steve
>
> From: Jon Spriggs <j...@sprig.gs>
> Date: Tuesday, 7 May, 2013 11:19 AM
> To: Steve Pallen <smpalle...@yahoo.com>
> Cc: Eric Crist <ecr...@secure-computing.net>, "
> openvpn-users@lists.sourceforge.net" <openvpn-users@lists.sourceforge.net>
>
> Subject: Re: [Openvpn-users] Openvpn grabs ports on service restart
>
> So, there are a few things I'd probably do to improve things.
>
> 1) Check /etc/init.d/openvpn - check which path it's trying to read the
> config from.
> 2) do `which service` to get the path of "service" to make sure it's
> running the one for the system - and not something else (improves your
> security if something else sticks a "service" command in your path
> somewhere!)
> 3) I'd also take a long look in /etc/openvpn and see if you've got any
> other config files in there that you might be accidentally launching?
>
> Beyond that (and I should add, I'm just a bystander, not a contributor to
> the project!), I can't see anything wrong with what you're doing already.
> It's a little random you're starting OpenVPN from a PHP script, but it's
> not the worst thing I've ever seen done!
>
> Regards,
>
> --
> Jon "The Nice Guy" Spriggs
>
>
> snip
>
>
------------------------------------------------------------------------------
Learn Graph Databases - Download FREE O'Reilly Book
"Graph Databases" is the definitive new guide to graph databases and
their applications. This 200-page book is written by three acclaimed
leaders in the field. The early access version is available now.
Download your free book today! http://p.sf.net/sfu/neotech_d2d_may
_______________________________________________
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
