Hi,
okay, that's fine. I will add this to the update script of that core update then.
-Michael
On Thu, 2018-02-15 at 11:56 +0100, ummeegge wrote:
Hi Michael,
Am Donnerstag, den 15.02.2018, 10:40 +0000 schrieb Michael Tremer:
Hi,
this looks good. I will merge this soon.
How do we convert existing configuration files?
i would do it like this:
#!/bin/bash
# Changed and new OpenVPN-2.4 directives will wrote to server.conf and renew CRL while update an core update if [ -e /var/ipfire/ovpn/server.conf ]; then if pgrep openvpn >/dev/null; then openvpnctrl -k sed -i -e 's/script-security 3 system/script-security 3/' -e '/status .*/ a ncp-disable' /var/ipfire/ovpn/server.conf openssl ca -gencrl -keyfile /var/ipfire/ovpn/ca/cakey.pem -cert /var/ipfire/ovpn/ca/cacert.pem -out /var/ipfire/ovpn/crls/cacrl.pem -config /var/ipfire/ovpn/openssl/ovpn.cnf openvpnctrl -s else sed -i -e 's/script-security 3 system/script-security 3/' -e '/status .*/ a ncp-disable' /var/ipfire/ovpn/server.conf openssl ca -gencrl -keyfile /var/ipfire/ovpn/ca/cakey.pem -cert /var/ipfire/ovpn/ca/cacert.pem -out /var/ipfire/ovpn/crls/cacrl.pem -config /var/ipfire/ovpn/openssl/ovpn.cnf fi fi
# EOF
which includes also an update of the CRL to stay save also in that manner
Best,
Erik