August 16, 2010 | ||
---|---|---|
View 4f79d3e
Windows security issue: Fixed potential local privilege escalation vulnerability in Windows service. The Windows service did not properly quote the executable filename passed to CreateService. A local attacker with write access to the root directory C:\ could create an executable that would be run with the same privilege level as the OpenVPN Windows service. However, since non-Administrative users normally lack write permission on C:\, this vulnerability is generally not exploitable except on older versions of Windows (such as Win2K) where the default permissions on C:\ would allow any user to create files there. Credit: Scott Laurie, MWR InfoSecurityJames Yonan authored on 2010/08/16 06:53:00 |
August 11, 2010 | ||
---|---|---|
View 379b549
Added warning about tls-remote in man page.James Yonan authored on 2010/08/11 02:31:31 |
August 10, 2010 | ||
---|---|---|
View fe7c58f
Distribute win directory (Python/MSVC-based build system) in "make dist" tarball.James Yonan authored on 2010/08/10 05:15:27 |
July 28, 2010 | ||
---|---|---|
View 75dfe3d
Added "net stop dnscache" and "net start dnscache" in front of existing --register-dns commands.James Yonan authored on 2010/07/28 06:46:34 |
July 27, 2010 | ||
---|---|---|
View dc85dae
Fixed an issue where application payload transmissions on the TLS control channel (such as AUTH_FAILED) that occur during or immediately after a TLS renegotiation might be dropped.James Yonan authored on 2010/07/27 16:10:01 |
||
View 1400e1c
Fixed typo: missing comment close.James Yonan authored on 2010/07/27 03:26:49 |
July 17, 2010 | ||
---|---|---|
View 57346f5
Added win/build_exe.py script, which is similar to win/build_all.py except that it doesn't build the TAP drivers or tapinstall.James Yonan authored on 2010/07/17 04:08:35 |
||
View b90c6f1
Added --register-dns option for Windows.James Yonan authored on 2010/07/17 03:01:11 |
July 12, 2010 | ||
---|---|---|
View f9b2ada
Implemented multi-address DNS expansion on the network field of route commands.James Yonan authored on 2010/07/12 10:55:54 |
July 10, 2010 | ||
---|---|---|
View 9c110e8
Version 2.1.1kJames Yonan authored on 2010/07/10 12:13:25 |
||
View 3796f90
Fixed bug in proxy fallback capability where openvpn.exe could core dump if http-proxy-fallback-disable command was issued in response to ">PROXY:NEED_NOW management" interface notification.James Yonan authored on 2010/07/10 12:04:27 |
||
View 941132e
Added support for MSVC debugging of openvpn.exe in settings.in:James Yonan authored on 2010/07/10 12:00:08 |
June 10, 2010 | ||
---|---|---|
View d222fcc
Fixed issue where bad creds provided by the management interface for HTTP Proxy Basic Authentication would go into an infinite retry-fail loop instead of requerying the management interface for new creds.James Yonan authored on 2010/06/10 12:17:21 |
June 1, 2010 | ||
---|---|---|
View aaf7297
Implemented a key/value auth channel from client to server.James Yonan authored on 2010/06/01 16:12:27 |
May 25, 2010 | ||
---|---|---|
View 3cf6c93
Implemented http-proxy-override and http-proxy-fallback directives to make it easier for OpenVPN client UIs to start a pre-existing client config file with proxy options, or to adaptively fall back to a proxy connection if a direct connection fails.James Yonan authored on 2010/05/25 07:51:16 |