openmediavault-openvpn 4.0.4 - can corrupt configuration

  • I was trying to debug an OpenMediaVault - OpenVPN (4.0.4) plugin issue and discovered that the server certificate was overritten with a client certificate under /etc/openvpn/pki/issued/<hostname>.crt


    To reproduce, create a new client with a Common name set to the server hostname. This will overwrite the server certificate with the new client certificate and break all VPN connections.


    Could a little error checking be added to the web interface to block this?


    To fix, I had to uninstall/re-install the openvpn plugin and re-create all of the users.

    • Official Post

    Could a little error checking be added to the web interface to block this?

    While I have ported this plugin to newer versions of OMV, I know very little about how it works. It may be the easyrsa script overwriting it. Either way, feel free to submit a pull request - https://github.com/OpenMediaVa…rs/openmediavault-openvpn. I have no way to test the pull requests though.

    omv 7.5.0-1 sandworm | 64 bit | 6.11 proxmox kernel

    plugins :: omvextrasorg 7.0 | kvm 7.0.15 | compose 7.3.2 | cputemp 7.0.2 | mergerfs 7.0.5 | scripts 7.0.9


    omv-extras.org plugins source code and issue tracker - github - changelogs


    Please try ctrl-shift-R and read this before posting a question.

    Please put your OMV system details in your signature.
    Please don't PM for support... Too many PMs!

Participate now!

Don’t have an account yet? Register yourself now and be a part of our community!