Your message dated Mon, 1 Mar 2010 13:12:37 +0100
with message-id <>
and subject line kvpnc: Not working with openvpn due to default script security
has caused the Debian Bug report #496452,
regarding kvpnc: Not working with openvpn due to default script security 
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact

Debian Bug Tracking System
Contact with problems
--- Begin Message ---
Package: kvpnc
Version: 0.9.0-1
Severity: important

The default script security level of the openvpn package in lenny does 
not allow the execution of user-defined programs or scripts. kvpnc,
which uses hook scripts with openvpn to import for example routing 
information, which is pushed from the server to the client, is not aware 
of this. Bringing up the VPN connection fails with the error message 
shown below. As far as I can tell, there is no way to set the 
script security level in kvpnc or to configure kvpnc to pass additional 
arguments to the vpn server executable.

I'm not sure if this should be rated 'important', as it's less of a bug 
than rather a missing feature, but it sure will hurt many users.


Debug: [openvpn] Sun Aug 24 22:00:51 2008 
/home/tobias/.kde/share/apps/kvpnc/ tun0 1500 1544 init
Debug: [openvpn] Sun Aug 24 22:00:51 2008 openvpn_execve: external 
program may not be called due to setting of --script-security level
Debug: [openvpn] Sun Aug 24 22:00:51 2008 script failed: external 
program fork failed
Debug: [openvpn] Sun Aug 24 22:00:51 2008 Exiting
Debug: OpenvpnManagementHandler raw: >FATAL:script failed: external 
program fork failed 
Debug: OpenvpnManagementHandler: eine andere management-Nachricht wurde 
bekommen: >FATAL:script failed: external program fork failed 

-- System Information:
Debian Release: lenny/sid
  APT prefers testing
  APT policy: (990, 'testing')
Architecture: i386 (i686)

Kernel: Linux 2.6.25-2-686-bigmem (SMP w/2 CPU cores)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages kvpnc depends on:
ii  gksu                    2.0.0-5          graphical frontend to su
ii  kdelibs4c2a             4:3.5.9.dfsg.1-6 core libraries and binaries for al
ii  libc6                   2.7-13           GNU C Library: Shared libraries
ii  libgcrypt11             1.4.1-1          LGPL Crypto library - runtime libr
ii  libqt3-mt               3:3.3.8b-5       Qt GUI Library (Threaded runtime v
ii  libstdc++6              4.3.1-2          The GNU Standard C++ Library v3
ii  menu                    2.1.40           generates programs menu for all me
ii  module-init-tools       3.4-1            tools for managing Linux kernel mo
ii  net-tools               1.60-19          The NET-3 networking toolkit
ii  psmisc                  22.6-1           Utilities that use the proc filesy

kvpnc recommends no packages.

Versions of packages kvpnc suggests:
ii  iptables              administration tools for packet fi
pn  openct                        <none>     (no description available)
pn  opensc                        <none>     (no description available)
ii  openssl                       0.9.8g-13  Secure Socket Layer (SSL) binary a
pn  openswan                      <none>     (no description available)
ii  openvpn                       2.1~rc9-3  virtual private network daemon
pn  pptp-linux                    <none>     (no description available)
pn  racoon                        <none>     (no description available)
pn  vpnc                          <none>     (no description available)
pn  xl2tpd                        <none>     (no description available)

-- no debconf information

--- End Message ---
--- Begin Message ---
Version: 0.9.3-1

--- End Message ---
pkg-kde-extras mailing list

Reply via email to