| May 31, 2009 | ||
|---|---|---|
 |
View d7fa38f
Update copyright to 2009.james authored on 2009/05/31 06:38:49 |
|
|
View 6aa7fb8
Fixed issue of symbol conflicts interfering with Windows CryptoAPI functionality (Alon Bar-Lev).james authored on 2009/05/31 04:53:49 |
|
| January 28, 2009 | ||
|---|---|---|
|
View 763602d
Fixed issue involving an #ifdef in a macro reference that breaks early gcc compilers.james authored on 2009/01/28 06:18:51 |
|
| November 18, 2008 | ||
|---|---|---|
|
View 09cc9c8
Added server-side --opt-verify option: clients that connect with options that are incompatible with those of the server will be disconnected.james authored on 2008/11/18 12:22:52 |
|
| October 31, 2008 | ||
|---|---|---|
|
View ed30424
Added --no-name-remapping option to allow Common Name, X509 Subject, and username strings to include any printable character including space, but excluding control characters such as tab, newline, and carriage-return.james authored on 2008/10/31 16:04:51 |
|
| October 29, 2008 | ||
|---|---|---|
|
View 24ce3b2
Added server-side --auth-user-pass-optional directive, to allow connections by clients that do not specify a username/password, when a user-defined authentication script/module is in place (via --auth-user-pass-verify, --management-client-auth, or a plugin module).james authored on 2008/10/29 05:01:05 |
|
| October 28, 2008 | ||
|---|---|---|
|
View 0c22645
Save X509 Subject fields to environment, using the naming convention: X509_{cert_depth}_{name}={value}james authored on 2008/10/28 14:38:55 |
|
| October 27, 2008 | ||
|---|---|---|
|
View 3cd37fc
Fixed informational message in ssl.c to properly indicate deferred authentication.james authored on 2008/10/27 14:58:44 |
|
| October 6, 2008 | ||
|---|---|---|
|
View 367ed08
Copyright notice changed to reflect change in name of Telethra to OpenVPN Technologies.james authored on 2008/10/06 16:33:45 |
|
| September 8, 2008 | ||
|---|---|---|
|
View 1c4af9e
Fixed bug in intra-session TLS key rollover that was introduced with deferred authentication features in 2.1_rc8.james authored on 2008/09/08 12:52:52 |
|
| September 6, 2008 | ||
|---|---|---|
|
View b8fb090
2.1_rc8 and earlier did implicit shell expansion on script arguments since all scripts were called by system(). The security hardening changes made to 2.1_rc9 no longer use system(), but rather use the safer execve or CreateProcess system calls. The security hardening also introduced a backward incompatibility with 2.1_rc8 and earlier in that script parameters were no longer shell-expanded, so for example:james authored on 2008/09/06 18:42:17 |
|
| August 11, 2008 | ||
|---|---|---|
|
View c282a2c
Workaround bug in OpenSSL 0.9.6b ASN1_STRING_to_UTF8, which the new implementation of extract_x509_field_ssl depends on.james authored on 2008/08/11 07:37:18 |
|
| July 26, 2008 | ||
|---|---|---|
|
View 5a2e9a2
Completely revamped the system for calling external programs and scripts:james authored on 2008/07/26 16:27:03 |
|
| July 19, 2008 | ||
|---|---|---|
|
View 564cbab
Modified extract_x509_field_ssl to return a status value indicating success/error, and any truncation of output due to an insufficiently large output buffer will be cause for error.james authored on 2008/07/19 12:33:27 |
|
|
View 7621883
Replace leading dash ('-') characters in an X509 name with underbars ('_') before calling user-defined scripts, to preclude the chance of a leading dash being interpreted as an option prefix.james authored on 2008/07/19 09:29:31 |
|