| April 5, 2006 | ||
|---|---|---|
 |
View 07d19ba
Security Vulnerability -- An OpenVPN client connecting to a malicious or compromised server could potentially receive "setenv" configuration directives from the server which could cause arbitrary code execution on the client via a LD_PRELOAD attack. A successful attack appears to require that (a) the client has agreed to allow the server to push configuration directives to it by including "pull" or the macro "client" in its configuration file, (b) the client configuration file uses a scripting directive such as "up" or "down", (c) the client succesfully authenticates the server, (d) the server is malicious or has been compromised and is under the control of the attacker, and (e) the attacker has at least some level of pre-existing control over files on the client (this might be accomplished by having the server respond to a client web request with a specially crafted file).james authored on 2006/04/05 15:01:08 |
|
| November 9, 2005 | ||
|---|---|---|
|
View eadf16a
Removed annoying 'i' variable from add_option.james authored on 2005/11/09 16:30:14 |
|
| November 5, 2005 | ||
|---|---|---|
|
View e8c1720
svn merge -r 771:780 $SO/trunk/openvpnjames authored on 2005/11/05 16:42:33 |
|
| October 31, 2005 | ||
|---|---|---|
|
View c67d59c
Windows reliability changes: * Added code to make sure that the local PATH environmental variable points to the Windows system32 directory. * Added new --ip-win32 adaptive mode which tries 'dynamic' and then fails over to 'netsh' if the DHCP negotiation fails. * Made --ip-win32 adaptive the default.james authored on 2005/10/31 12:01:17 |
|
| October 20, 2005 | ||
|---|---|---|
|
View 984cf00
Merged with Alon's r688.james authored on 2005/10/20 14:58:08 |
|
| September 26, 2005 | ||
|---|---|---|
|
View 6fbf66f
This is the start of the BETA21 branch. It includes the --topology feature, and TAP-Win32 driver changes to allow non-admin access.james authored on 2005/09/26 14:28:27 |
|