openvpn
Running openvpn + auth-ldap plugin will break openvpn with segmentation fault.
Dmesg logs
[964862.241448] grsec: From 127.0.0.6: denied resource overstep by
requesting 4096 for RLIMIT_CORE against limit 0 for
/usr/sbin/openvpn[openvpn:31276] uid/euid:0/0 gid/egid:0/0, parent
/bin/busybox[ash:31212] uid/euid:0/0 gid/egid:0/0
openvpn.conf file
port 7698
proto udp
dev tap
ca /etc/openvpn/keys/ca.crt
cert /etc/openvpn/keys/gw.crt
key /etc/openvpn/keys/gw.key
dh /etc/openvpn/keys/dh1024.pem
server 10.16.0.0 255.255.255.0
keepalive 10 120
comp-lzo
user nobody
group nobody
persist-key
persist-tun
#status /var/log/openvpn-status-ldap.log
log-append /var/log/openvpn-ldap.log
verb 6
mssfix 1450
ping-timer-rem
plugin /usr/lib/openvpn-auth-ldap.so “/etc/openvpn/auth-ldap.conf”
client-cert-not-required
auth-ldap.conf
URL ldap://127.0.0.1:389
BindDN cn=admin,dc=testdomain
Password blah!@
Timeout 15
TLSEnable no
FollowReferrals yes
Regards,
Harry
(from redmine: issue id 6726, created on 2017-01-25)