Re: [Openvpn-devel] Enable FIPS encryption

I think in order to activate FIPS mode in openvpn we need not only to build it against fips capable openssl, but also call FIPS_mode_set() function inside openvpn code. I'm guessing fips mode activation in the kernel in case of RHEL means that all services and applications in the system would

[Openvpn-devel] [PATCH] Correctly state the default dhcp server address in man page

Also correct the default ifconfig-pool end in docs and comments Signed-off-by: Selva Nair --- doc/openvpn.8| 4 ++-- src/openvpn/helper.c | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/doc/openvpn.8 b/doc/openvpn.8 index e61b6bb..290a441

Re: [Openvpn-devel] Enable FIPS encryption

2016-12-02 17:55 GMT+05:00 debbie10t : > Hi, > > On 02/12/16 10:32, boxar...@yandex.ru wrote: > > Hi! > > > > I would like to know if it's possible to enable fips enabled encryption > on my vpn server? > > Here is a link to fips user guide https://www.openssl.org/docs/ >

Re: [Openvpn-devel] Enable FIPS encryption

On 02/12/16 13:55, debbie10t wrote: > Hi, > > On 02/12/16 10:32, boxar...@yandex.ru wrote: >> Hi! >> >> I would like to know if it's possible to enable fips enabled encryption on >> my vpn server? >> Here is a link to fips user guide >> https://www.openssl.org/docs/fips/UserGuide-2.0.pdf . >>

Re: [Openvpn-devel] [PATCH applied] Re: Do not restart dns client service as a part of --register-dns processing

On Fri, Dec 2, 2016 at 6:28 AM, Gert Doering wrote: > On Thu, Dec 01, 2016 at 05:25:49PM -0500, Selva Nair wrote: > > Do we want this in 2.3.14 as well ? If so I'll send a patch with service > > part removed (note to self: remember to include docs and Changes.rst > edits) >

Re: [Openvpn-devel] Enable FIPS encryption

Hi, On 02/12/16 10:32, boxar...@yandex.ru wrote: > Hi! > > I would like to know if it's possible to enable fips enabled encryption on > my vpn server? > Here is a link to fips user guide > https://www.openssl.org/docs/fips/UserGuide-2.0.pdf . > It looks like I'd have to change source code and

Re: [Openvpn-devel] Enable FIPS encryption

On 02/12/16 11:32, boxar...@yandex.ru wrote: > Hi! > > I would like to know if it's possible to enable fips enabled encryption on > my vpn server? > Here is a link to fips user guide > https://www.openssl.org/docs/fips/UserGuide-2.0.pdf . > It looks like I'd have to change source code and

Re: [Openvpn-devel] [PATCH applied] Re: Do not restart dns client service as a part of --register-dns processing

Hi, On Thu, Dec 01, 2016 at 05:25:49PM -0500, Selva Nair wrote: > Do we want this in 2.3.14 as well ? If so I'll send a patch with service > part removed (note to self: remember to include docs and Changes.rst edits) My gut feeling is "leave 2.3 as it is, this could actually be *necessary* on

[Openvpn-devel] Enable FIPS encryption

Hi! I would like to know if it's possible to enable fips enabled encryption on my vpn server? Here is a link to fips user guide https://www.openssl.org/docs/fips/UserGuide-2.0.pdf . It looks like I'd have to change source code and compile it myself to make it FIPS compliant. Any help or

Re: [Openvpn-devel] [PATCH v2 2/2] Refuse to daemonize when running from systemd

On 02/12/16 02:45, debbie10t wrote: [...snip...] > My east.conf file: > > # cat server/east.conf > > ### TESTS > # > ## systemd enhancements: failed as expect > ;bad-opt > > ## daemon: Did *not* fail when run from systemd service > daemon vpn-srv-east This is just as expected. Having --daemon

[Openvpn-devel] OpenVPN 2.4_rc1 released

The OpenVPN community project team is proud to release OpenVPN 2.4_rc1. It can be downloaded from here: This release includes several smaller fixes and improvements. A summary of these changes is available here: