Jelle Dekker
30920115b3
Implemented that a Certificate Revocation List is generated during installation after generation of other Public Key Infrastructure. Enabled this CRL in the server config. The added benefit of this is that whenever the user now revokes a client, the change is instant. Whereas before, the first time a client was revoked, the OpenVPN server had to be restarted to enabled the then-newly-generated CRL. This change also makes the file /etc/pivpn/REVOKE_STATUS obsolete.
...
Documentation: https://openvpn.net/index.php/open-source/documentation/howto.html#revoke
2017-09-22 02:46:52 -05:00
Kaladin Light
da5facecbc
Add 'pivpn clients' command to show list of connected clients
2016-12-08 11:43:30 -05:00
Kaladin Light
596e6c8277
Phase 3 (of 3?): pivpn modifications for easy-rsa3
...
This updates pivpn revoke
2016-12-06 11:44:07 -05:00
Kaladin Light
34e6e078e5
Phase 2 (of 3?): server.conf modifications for easy-rsa3
2016-12-04 23:34:08 -05:00
Kaladin Light
6997a0b9a7
Fixes Issue #71 :
...
- Uses network address instead of IP in the push route to avoid warnings
- If a second DNS is not entered, remove second occurence of the dhcp-option DNS
2016-11-09 15:02:40 -05:00
Kaladin Light
1b0b6478b3
Set control channel to TLS 1.2
...
Debate with myself on adding cipher list.
2016-04-26 10:39:18 -04:00
Kaladin Light
5da2626883
Increase default levels of security
2016-04-23 15:08:14 -04:00
Kaladin Light
719dfef7ae
Allow user to set DNS server clients will use
2016-04-20 12:10:06 -04:00
Kaladin Light
53565dd4fe
First commit of reworked installer
2016-04-19 14:01:55 -04:00
