September 18, 2009 | ||
---|---|---|
View 673f583
The maximum number of "route" directives (specified in the config file or pulled from a server) can now be configured via the new "max-routes" directive.james authored on 2009/09/18 08:43:37 |
May 31, 2009 | ||
---|---|---|
View d7fa38f
Update copyright to 2009.james authored on 2009/05/31 06:38:49 |
November 17, 2008 | ||
---|---|---|
View a828135
* Added additional method parameter to --script-security to preserve backward compatibility with system() call semantics used in OpenVPN 2.1_rc8 and earlier. To preserve backward compatibility use:james authored on 2008/11/17 13:28:07 |
October 6, 2008 | ||
---|---|---|
View 367ed08
Copyright notice changed to reflect change in name of Telethra to OpenVPN Technologies.james authored on 2008/10/06 16:33:45 |
September 6, 2008 | ||
---|---|---|
View b8fb090
2.1_rc8 and earlier did implicit shell expansion on script arguments since all scripts were called by system(). The security hardening changes made to 2.1_rc9 no longer use system(), but rather use the safer execve or CreateProcess system calls. The security hardening also introduced a backward incompatibility with 2.1_rc8 and earlier in that script parameters were no longer shell-expanded, so for example:james authored on 2008/09/06 18:42:17 |
July 27, 2008 | ||
---|---|---|
View b551bec
Added additional defensive programming to buffer.[ch] functions.james authored on 2008/07/27 14:31:09 |
July 26, 2008 | ||
---|---|---|
View 5a2e9a2
Completely revamped the system for calling external programs and scripts:james authored on 2008/07/26 16:27:03 |
July 24, 2008 | ||
---|---|---|
View 26bb4c7
Added argv_x functions to buffer.[ch] to be used to safely build up argv strings for execve without the possibility of truncation or misinterpretation of mid-argument spacing.james authored on 2008/07/24 04:51:27 |
July 19, 2008 | ||
---|---|---|
View bda8d38
buf_printf will now return false on errors, such as truncation due to overflow.james authored on 2008/07/19 12:39:59 |
||
View 7621883
Replace leading dash ('-') characters in an X509 name with underbars ('_') before calling user-defined scripts, to preclude the chance of a leading dash being interpreted as an option prefix.james authored on 2008/07/19 09:29:31 |
||
View cc1d399
Reverted some recent buffer.[ch] changes, including r3058 (except for likely() and unlikely() macro additions to syshead.h) and r3061.james authored on 2008/07/19 05:46:06 |
July 18, 2008 | ||
---|---|---|
View 8e98631
Check for multiplication overflow on ALLOC_ARRAY* functions.james authored on 2008/07/18 05:10:18 |
July 17, 2008 | ||
---|---|---|
View 5d89a36
Added likely() and unlikely() branch prediction hint macros to syshead.hjames authored on 2008/07/17 05:36:54 |
July 15, 2008 | ||
---|---|---|
View 1c0cc4a
Copyright change OpenVPN Solutions LLC -> Telethra, Inc.james authored on 2008/07/15 03:59:09 |
June 12, 2008 | ||
---|---|---|
View eca8691
Updated copyright notice to 2008.james authored on 2008/06/12 06:59:26 |