On Wed, 2022-05-04 at 09:36 +, Schütz Dominik wrote:
> Hi,
>
> how can I specify a realm with "--protocol=pulse"?
> # output without specify realm
> Choose Pulse user realm:
> Realm:
> [REALM_xxx_Productive|REALM_xxx_Limited_Initial_Network|REALM_xxx_Limited_Machine_Network]:REALM_xxx_Limited
On Wed, 2022-05-04 at 09:45 +, Schütz Dominik wrote:
>
> I have installed the new OpenConnect version 9.01 on Ubuntu 22.04
> (packages from
> https://launchpad.net/ubuntu/+source/openconnect/9.01-1/+build/23596572),
> after a while I get an output after "ESP session established with
> server
On Wed, 2022-05-04 at 10:30 +, Schütz Dominik wrote:
> Yes, it keeps working. The output after "ESP session established with
> server" has no effect on the functionality. It just doesn't look
> nice.
Thanks.
Fixed in https://gitlab.com/openconnect/openconnect/-/commit/e733fb2d99
smime.p7s
On Wed, 2022-05-04 at 10:42 +, Schütz Dominik wrote:
> It does not work with '-F pulse_realm_entry:realm=REALM_xxx_Foo' -
> see text below:
>
Hm, please can you try with the hack I put into
https://gitlab.com/openconnect/openconnect/-/issues/421#note_934005457
which will make it print the act
On Wed, 2022-05-04 at 11:44 +0100, David Woodhouse wrote:
> On Wed, 2022-05-04 at 10:42 +, Schütz Dominik wrote:
> > It does not work with '-F pulse_realm_entry:realm=REALM_xxx_Foo' -
> > see text below:
> >
>
> Hm, please can you try with the hack I put into
> https://gitlab.com/openconnect/
On Wed, 2022-05-04 at 10:23 +, Schütz Dominik wrote:
> dominik at host1:~$ sudo openconnect --script=/root/vpnc-script
> --certificate=/var/lib/802.1x/host1.pem --sslkey=/usr/local/wlan/host1.key
> --protocol=pulse "https://vpn-gateway/linux";
> Connected to xxx.xxx.xxx.xxx:443
> Using client
On Wed, 2022-05-04 at 11:11 +, Schütz Dominik wrote:
> With the hack and "pulse_realm_choice:realm_choice" it works fine:
>
> But now I get a other output, when I authenticate with username +
> password:
> # The two "lookup" messages are new
>
> Enter user credentials:
> lookup 'pulse_user:u
Hi,
when i install "openconnect_9.01-0+9.1_amd64.deb" from
"https://software.opensuse.org/download.html?project=home%3Abluca%3Aopenconnect%3Arelease&;package=openconnect";
it doesn't work, see text below:
dominik at host1:~$ ldd /usr/sbin/openconnect
/usr/sbin/openconnect: /lib/x86_64-linux-gnu/
On Wed, May 4, 2022 at 3:11 AM David Woodhouse wrote:
>
> On Wed, 2022-05-04 at 09:36 +, Schütz Dominik wrote:
> > Hi,
> >
> > how can I specify a realm with "--protocol=pulse"?
> > # output without specify realm
> > Choose Pulse user realm:
> > Realm:
> > [REALM_xxx_Productive|REALM_xxx_Limi
On Wed, 2022-05-04 at 16:51 +, Schütz Dominik wrote:
>
> when i install "openconnect_9.01-0+9.1_amd64.deb" from
> "https://software.opensuse.org/download.html?project=home%3Abluca%3Aopenconnect%3Arelease&;package=openconnect";
> it doesn't work, see text below:
Make sure you also install the
On Wed, 2022-05-04 at 16:54 +, Schütz Dominik wrote:
> unfortunately I can't send the output of "-vv --dump-http-traffic"
> because it contains company-specific information.
Fair enough, although that obviously makes it difficult to try to help.
Without even seeing the final offending EAP-TTL
On Wed, 2022-05-04 at 18:30 +0100, David Woodhouse wrote:
> On Wed, 2022-05-04 at 16:51 +, Schütz Dominik wrote:
> >
> > when i install "openconnect_9.01-0+9.1_amd64.deb" from
> > "https://software.opensuse.org/download.html?project=home%3Abluca%3Aopenconnect%3Arelease&;package=openconnect";
On Wed, 2022-05-04 at 18:59 +0100, Luca Boccassi wrote:
>
> The same can be done by maintaining a symbols file. I do that for the
> actual Debian/Ubuntu builds (
> https://salsa.debian.org/debian/openconnect/-/blob/master/debian/libopenconnect5.symbols
> ), but it's a _lot_ of work and it would co
On Wed, 2022-05-04 at 19:12 +0100, David Woodhouse wrote:
> On Wed, 2022-05-04 at 18:59 +0100, Luca Boccassi wrote:
> >
> > The same can be done by maintaining a symbols file. I do that for the
> > actual Debian/Ubuntu builds (
> > https://salsa.debian.org/debian/openconnect/-/blob/master/debian/l
On Wed, 2022-05-04 at 19:19 +0100, Luca Boccassi wrote:
> On Wed, 2022-05-04 at 19:12 +0100, David Woodhouse wrote:
> > On Wed, 2022-05-04 at 18:59 +0100, Luca Boccassi wrote:
> > > The same can be done by maintaining a symbols file. I do that for the
> > > actual Debian/Ubuntu builds (
> > > https
On Wed, 2022-05-04 at 18:26 +, Schütz Dominik wrote:
> Thank you for the guidance :)
>
> I'll try to solve it myself first. I'll get back to you then.
>
You can use a MITM proxy like http://david.woodhou.se/proxy.go to watch
all the TLS traffic; I found it really useful for Pulse.
Note the
On Wed, 2022-05-04 at 19:24 +0100, David Woodhouse wrote:
> On Wed, 2022-05-04 at 19:19 +0100, Luca Boccassi wrote:
> > On Wed, 2022-05-04 at 19:12 +0100, David Woodhouse wrote:
> > > On Wed, 2022-05-04 at 18:59 +0100, Luca Boccassi wrote:
> > > > The same can be done by maintaining a symbols file.
> > > It would have to be ran manually every time.
> >
> > I thought it could be automated as part of debian/rules?
>
> It makes sense to maintain a symbols file only if each version is
> annotated with the exact package version that first introduced it, so
> that dpkg can generate the minimal
18 matches
Mail list logo
