Maniphest T2150

SSTP ssl certificates can only be stored in /config/user-data/sstp
Closed, ResolvedPublicFEATURE REQUEST
Actions

Assigned To

Authored By

	c-po
	Mar 22 2020, 8:57 AM

Tags

Referenced Files

None

Subscribers

Description

As of now SSL certificates used by SSTP VPN are only allowed to be stored in /config/user-data/sstp this is in contrairy to othe SSL based VPN solutions (OpenVPN) where the key can be stored anywhere on the system. If the user stores the key outside of /config a warning is shown indicating that the key will be lost on upgrade.

Switching from a relative path in /config/user-data/sstp to an absolute path also gives the advantage of using certbot for SSTP VPN as the cert can be directly referenced.

Details

Version: -
Is it a breaking change?: Unspecified (possibly destroys the router)
Issue type: Feature (new functionality)

Related Objects

Mentioned In: rVYOSONEXfdafecc0c569: sstp: T2150: use full file path on SSL certificates

Event Timeline

c-po created this task.Mar 22 2020, 8:57 AM

c-po changed the task status from Open to In progress.

c-po claimed this task.

c-po edited a custom field.

c-po mentioned this in rVYOSONEXfdafecc0c569: sstp: T2150: use full file path on SSL certificates.Mar 22 2020, 10:47 AM

c-po closed this task as Resolved.Mar 22 2020, 10:47 AM

pasik subscribed.Mar 22 2020, 5:13 PM

c-po moved this task from Need Triage to Finished on the VyOS 1.3 Equuleus board.Apr 5 2020, 12:35 PM

erkin updated the task description. (Show Details)Aug 31 2021, 5:14 PM

erkin set Issue type to improvement.

erkin removed a subscriber: Global Notifications.

syncer edited projects, added VyOS 1.3 Equuleus (1.3.0); removed VyOS 1.3 Equuleus.Aug 30 2022, 2:03 PM

syncer moved this task from Need Triage to Finished on the VyOS 1.3 Equuleus (1.3.0) board.

dmbaturin set Issue type to Feature (new functionality).Nov 8 2024, 10:49 AM