[Savannah-cvs] [VPNConfiguration]

savannah-cvs

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Savannah-cvs] [VPNConfiguration]

From:	mjflick
Subject:	[Savannah-cvs] [VPNConfiguration]
Date:	Wed, 27 Apr 2011 03:29:51 +0000

The VPN DomU is located at savannahvpn.gnu.org.
(also vpn.savannah.gnu.org)

Authentication to connect to the vpn is controlled via certificates and 
username/password authentication.

The vpn domU uses /etc/openvpn/savannah/auth.pl for processing of 
authentication.

auth.pl checks the contents of /etc/openvpn/savannah/passwd for 
username/password validation.

The 'passwd' file is generated from "/etc/openvpn/savannah/user-list", which 
contains a list of users permitted to login.

The '/home/svsync/sync-passwords' script runs as user "svsyns" and gets the 
"password file" from colonialone (Savannah) as user "vpn" on colonialone, which 
is only permitted to run /home/vpn/savannah_admin_pw_file.pl.

(It's worth noting the strong focus not to use the "root" user here.)


--
forwarded from http://savannah.gnu.org/maintenance/address@hidden/maintenance

[Prev in Thread]

Current Thread

[Next in Thread]

[Savannah-cvs] [VPNConfiguration], mjflick <=

Prev by Date: [Savannah-cvs] [SCM] Savane clean-up branch, master, updated. 76deabbddb6564d98016ce50a51329341f7119bc
Next by Date: [Savannah-cvs] [VPNConfiguration] (edit)
Previous by thread: [Savannah-cvs] [SCM] Savane clean-up branch, master, updated. 76deabbddb6564d98016ce50a51329341f7119bc
Next by thread: [Savannah-cvs] [VPNConfiguration] (edit)
Index(es):
- Date
- Thread