| September 6, 2008 | ||
|---|---|---|
 |
View b4b5c31
Modified ip_or_dns_addr_safe, which validates pulled DNS names, to more closely conform to RFC 3696:james authored on 2008/09/06 19:43:31 |
|
|
View b8fb090
2.1_rc8 and earlier did implicit shell expansion on script arguments since all scripts were called by system(). The security hardening changes made to 2.1_rc9 no longer use system(), but rather use the safer execve or CreateProcess system calls. The security hardening also introduced a backward incompatibility with 2.1_rc8 and earlier in that script parameters were no longer shell-expanded, so for example:james authored on 2008/09/06 18:42:17 |
|
| September 5, 2008 | ||
|---|---|---|
|
View 0a838de
Added --allow-pull-fqdn option which allows client to pull DNS names from server (rather than only IP address) for --ifconfig, --route, and --route-gateway. OpenVPN versions 2.1_rc7 and earlier allowed DNS names for these options to be pulled and translated to IP addresses by default. Now --allow-pull-fqdn will be explicitly required on the client to enable DNS-name-to-IP-address translation of pulled options.james authored on 2008/09/05 05:35:09 |
|
| July 27, 2008 | ||
|---|---|---|
|
View b4073a7
Perform additional input validation on options pulled by client from server. Fixes --iproute vulnerability.james authored on 2008/07/27 08:08:29 |
|
| July 26, 2008 | ||
|---|---|---|
|
View 5a2e9a2
Completely revamped the system for calling external programs and scripts:james authored on 2008/07/26 16:27:03 |
|
| July 17, 2008 | ||
|---|---|---|
|
View e2e10f8
Added SOCKET_SND_RCV_BUF_MAX constant (set to 1000000) to limit the maximum size passed to setsockopt SNDBUF/RCVBUF.james authored on 2008/07/17 08:11:29 |
|
| July 15, 2008 | ||
|---|---|---|
|
View 1c0cc4a
Copyright change OpenVPN Solutions LLC -> Telethra, Inc.james authored on 2008/07/15 03:59:09 |
|
| June 12, 2008 | ||
|---|---|---|
|
View eca8691
Updated copyright notice to 2008.james authored on 2008/06/12 06:59:26 |
|
| June 11, 2008 | ||
|---|---|---|
|
View 4e9a51d
Merged connection profiles from http://svn.openvpn.net/projects/openvpn/test/connjames authored on 2008/06/11 19:48:50 |
|
| May 25, 2008 | ||
|---|---|---|
|
View 344ee91
Support asynchronous/deferred authentication in OPENVPN_PLUGIN_AUTH_USER_PASS_VERIFY plugin handler.james authored on 2008/05/25 08:26:11 |
|
| May 13, 2008 | ||
|---|---|---|
|
View 1bda73a
Moved branch into official BETA21 position.james authored on 2008/05/13 05:31:43 |
|
| January 21, 2008 | ||
|---|---|---|
|
View b19bdf6
Fixed interim memory growth issue in TCP connect loop where "TCP: connect to %s failed, will try again in %d seconds: %s" is output.james authored on 2008/01/21 12:26:45 |
|
| November 8, 2006 | ||
|---|---|---|
|
View 1406db5
PROTO_TCPv4 is never used as an index into proto_overhead, however this should be fixed.james authored on 2006/11/08 10:05:19 |
|
| November 2, 2006 | ||
|---|---|---|
|
View 7d770f1
SO_REUSEADDR should not be set on Windows TCP sockets because it will cause bind to succeed on port conflicts.james authored on 2006/11/02 06:21:01 |
|
| June 30, 2006 | ||
|---|---|---|
|
View e482a63
Added two new management states: OPENVPN_STATE_RESOLVE -- DNS lookup */ OPENVPN_STATE_TCP_CONNECT -- Connecting to TCP serverjames authored on 2006/06/30 03:57:21 |
|