openmediavault-openvpn 4.0.4 - can corrupt configuration

  • I was trying to debug an OpenMediaVault - OpenVPN (4.0.4) plugin issue and discovered that the server certificate was overritten with a client certificate under /etc/openvpn/pki/issued/<hostname>.crt


    To reproduce, create a new client with a Common name set to the server hostname. This will overwrite the server certificate with the new client certificate and break all VPN connections.


    Could a little error checking be added to the web interface to block this?


    To fix, I had to uninstall/re-install the openvpn plugin and re-create all of the users.

  • Could a little error checking be added to the web interface to block this?

    While I have ported this plugin to newer versions of OMV, I know very little about how it works. It may be the easyrsa script overwriting it. Either way, feel free to submit a pull request - https://github.com/OpenMediaVa…rs/openmediavault-openvpn. I have no way to test the pull requests though.

    omv 5.6.18 usul | 64 bit | 5.11 proxmox kernel | omvextrasorg 5.6.3 | kvm plugin 5.1.7
    omv-extras.org plugins source code and issue tracker - github


    Please read this before posting a question.
    Please don't PM for support... Too many PMs!

Participate now!

Don’t have an account yet? Register yourself now and be a part of our community!