Re: openvpn and network manager
- From: Dimitris Zilaskos <dzila tassadar physics auth gr>
- To: Vasiliy G Tolstov <v tolstov selfip ru>
- Cc: networkmanager-list gnome org
- Subject: Re: openvpn and network manager
- Date: Thu, 22 May 2008 14:52:16 +0300 (EEST)
I did some research on that and also contacted the local CA operators.
They told me that ns-cert-type is old,propriety and depracated and does
not significantly add to security. Here are some references:
http://osdir.com/ml/java.ejbca.devel/2005-11/msg00003.html
http://openvpn.net/archive/openvpn-users/2007-03/msg00062.html
http://readlist.com/lists/postfix.org/postfix-users/12/64401.html
http://emperor.canarie.ca/pipermail/tagpma-general/2007-January/001326.html
In any case, this certificate extension is never gonna be
supported in several educational large PKI infrastructures that I (and
serveral other academic users as well) employ. So lack of this feature
will mean loss of a large audience for the networkmanager tool.
Can we have a fix please ?:)
--
============================================================================
Dimitris Zilaskos
Department of Physics @ Aristotle University of Thessaloniki , Greece
PGP key : http://tassadar.physics.auth.gr/~dzila/pgp_public_key.asc
http://egnatia.ee.auth.gr/~dzila/pgp_public_key.asc
MD5sum : de2bd8f73d545f0e4caf3096894ad83f pgp_public_key.asc
============================================================================
On Thu, 22 May 2008, Vasiliy G Tolstov wrote:
On Thu, 2008-05-22 at 14:20 +0300, Dimitris Zilaskos wrote:
Hi,
I am using Fedora Core 9 and I have been bitten by this issue:
http://www.mail-archive.com/networkmanager-list gnome org/msg09258.html
Is there any other why, apart from changing the source code, to bypass it?
Maybe a feature to be added allowing changes of advanced openvpn settings?
TIA
Greate feature, but may break security...
--
Vasiliy G Tolstov
http://selfip.ru
[
Date Prev][
Date Next] [
Thread Prev][
Thread Next]
[
Thread Index]
[
Date Index]
[
Author Index]
