openmediavault-openvpn 4.0.4 - can corrupt configuration

  • I was trying to debug an OpenMediaVault - OpenVPN (4.0.4) plugin issue and discovered that the server certificate was overritten with a client certificate under /etc/openvpn/pki/issued/<hostname>.crt


    To reproduce, create a new client with a Common name set to the server hostname. This will overwrite the server certificate with the new client certificate and break all VPN connections.


    Could a little error checking be added to the web interface to block this?


    To fix, I had to uninstall/re-install the openvpn plugin and re-create all of the users.

    • Offizieller Beitrag

    Could a little error checking be added to the web interface to block this?

    While I have ported this plugin to newer versions of OMV, I know very little about how it works. It may be the easyrsa script overwriting it. Either way, feel free to submit a pull request - https://github.com/OpenMediaVa…rs/openmediavault-openvpn. I have no way to test the pull requests though.

    omv 7.0.4-2 sandworm | 64 bit | 6.5 proxmox kernel

    plugins :: omvextrasorg 7.0 | kvm 7.0.10 | compose 7.1.2 | k8s 7.0-6 | cputemp 7.0 | mergerfs 7.0.3


    omv-extras.org plugins source code and issue tracker - github


    Please try ctrl-shift-R and read this before posting a question.

    Please put your OMV system details in your signature.
    Please don't PM for support... Too many PMs!

Jetzt mitmachen!

Sie haben noch kein Benutzerkonto auf unserer Seite? Registrieren Sie sich kostenlos und nehmen Sie an unserer Community teil!