Login or Register to Ask a Question and Join Our Community


Security Advisories (RSS)

Ubuntu: OpenVPN regression

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Security Advisories (RSS) Ubuntu: OpenVPN regression
# 1  
Old 05-15-2008
Ubuntu: OpenVPN regression
LinuxSecurity.com: USN-612-3 addressed a weakness in OpenSSL certificate and keys generation in OpenVPN by adding checks for vulnerable certificates and keys to OpenVPN. A regression was introduced in OpenVPN when using TLS and multi-client/server which caused OpenVPN to not start when using valid SSL certificates.

More...
Login or Register to Ask a Question

Previous Thread | Next Thread

1 More Discussions You Might Find Interesting

1. Solaris

OpenVPN and NAT

Hi. I am attempting to set up an OpenVPN server on my Solaris 11 box by following all the Linux guides. Thus far I have a working VPN that I can connect to and ssh onto my VPN server over which is great but not what I require long term. I would like to route all VPN client requests for addresses... (0 Replies)
Discussion started by: nickb1976
0 Replies
Login or Register to Ask a Question

LEARN ABOUT OPENSOLARIS

nseq

nseq(1openssl)							      OpenSSL							    nseq(1openssl)

NAME

       nseq - create or examine a netscape certificate sequence

SYNOPSIS

       openssl nseq [-in filename] [-out filename] [-toseq]

DESCRIPTION

       The nseq command takes a file containing a Netscape certificate sequence and prints out the certificates contained in it or takes a file of
       certificates and converts it into a Netscape certificate sequence.

COMMAND OPTIONS

       -in filename
	   This specifies the input filename to read or standard input if this option is not specified.

       -out filename
	   specifies the output filename or standard output by default.

       -toseq
	   normally a Netscape certificate sequence will be input and the output is the certificates contained in it. With the -toseq option the
	   situation is reversed: a Netscape certificate sequence is created from a file of certificates.

EXAMPLES

       Output the certificates in a Netscape certificate sequence

	openssl nseq -in nseq.pem -out certs.pem

       Create a Netscape certificate sequence

	openssl nseq -in certs.pem -toseq -out nseq.pem

NOTES

       The PEM encoded form uses the same headers and footers as a certificate:

	-----BEGIN CERTIFICATE-----
	-----END CERTIFICATE-----

       A Netscape certificate sequence is a Netscape specific form that can be sent to browsers as an alternative to the standard PKCS#7 format
       when several certificates are sent to the browser: for example during certificate enrollment.  It is used by Netscape certificate server
       for example.

BUGS

       This program needs a few more options: like allowing DER or PEM input and output files and allowing multiple certificate files to be used.

OpenSSL-0.9.8							    Oct 11 2005 						    nseq(1openssl)