Changes between Version 17 and Version 18 of GIR3.2_IMF


Ignore:
Timestamp:
10/13/11 16:29:54 (8 years ago)
Author:
lnevers@bbn.com
Comment:

--

Legend:

Unmodified
Added
Removed
Modified
  • GIR3.2_IMF

    v17 v18  
    140140{{{
    141141
    142 nevers@arendia:~/IMF/VPN/gpo-bbn$ sudo openvpn --config ./gpo-bbn.conf  --scrip
    143 t-security 2
    144 Thu Oct 13 15:10:04 2011 OpenVPN 2.2.1 i686-pc-linux-gnu [SSL] [LZO2] [EPOLL] [eurephia] built on Oct 13 2011
     142lnevers@arendia:~/IMF/VPN/gpo-bbn$ sudo openvpn --config ./gpo-bbn.conf  --script-security 2 
     143Thu Oct 13 15:59:09 2011 OpenVPN 2.2.1 i686-pc-linux-gnu [SSL] [LZO2] [EPOLL] [eurephia] built on Oct 13 2011
    145144Enter Auth Username:lnevers
    146145Enter Auth Password:
    147 Thu Oct 13 15:10:14 2011 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
    148 Thu Oct 13 15:10:14 2011 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
    149 Thu Oct 13 15:10:14 2011 WARNING: file 'gpo-bbn.key' is group or others accessible
    150 Thu Oct 13 15:10:14 2011 Control Channel MTU parms [ L:1541 D:138 EF:38 EB:0 ET:0 EL:0 ]
    151 Thu Oct 13 15:10:14 2011 Data Channel MTU parms [ L:1541 D:1450 EF:41 EB:4 ET:0 EL:0 ]
    152 Thu Oct 13 15:10:14 2011 Local Options hash (VER=V4): '3514370b'
    153 Thu Oct 13 15:10:14 2011 Expected Remote Options hash (VER=V4): '239669a8'
    154 Thu Oct 13 15:10:14 2011 NOTE: UID/GID downgrade will be delayed because of --client, --pull, or --up-delay
    155 Thu Oct 13 15:10:14 2011 UDPv4 link local: [undef]
    156 Thu Oct 13 15:10:14 2011 UDPv4 link remote: 152.54.3.33:1194
    157 Thu Oct 13 15:10:14 2011 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
    158 Thu Oct 13 15:10:14 2011 VERIFY OK: depth=1, /C=US/ST=NC/L=Chapel_Hill/O=BEN@RENCI/emailAddress=ben-ops@renci.org
    159 Thu Oct 13 15:10:14 2011 VERIFY OK: depth=0, /C=US/ST=NC/L=Chapel_Hill/O=BEN@RENCI/OU=server/CN=server/emailAddress=ben-ops@renci.org
    160 Thu Oct 13 15:10:16 2011 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
    161 Thu Oct 13 15:10:16 2011 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
    162 Thu Oct 13 15:10:16 2011 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
    163 Thu Oct 13 15:10:16 2011 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
    164 Thu Oct 13 15:10:16 2011 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
    165 Thu Oct 13 15:10:16 2011 [server] Peer Connection Initiated with 152.54.3.33:1194
    166 Thu Oct 13 15:10:18 2011 AUTH: Received AUTH_FAILED control message
     146Thu Oct 13 15:59:15 2011 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
     147Thu Oct 13 15:59:15 2011 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
     148Thu Oct 13 15:59:15 2011 WARNING: file 'gpo-bbn.key' is group or others accessible
     149Thu Oct 13 15:59:15 2011 Control Channel MTU parms [ L:1541 D:138 EF:38 EB:0 ET:0 EL:0 ]
     150Thu Oct 13 15:59:15 2011 Data Channel MTU parms [ L:1541 D:1450 EF:41 EB:4 ET:0 EL:0 ]
     151Thu Oct 13 15:59:15 2011 Local Options hash (VER=V4): '3514370b'
     152Thu Oct 13 15:59:15 2011 Expected Remote Options hash (VER=V4): '239669a8'
     153Thu Oct 13 15:59:15 2011 NOTE: UID/GID downgrade will be delayed because of --client, --pull, or --up-delay
     154Thu Oct 13 15:59:15 2011 UDPv4 link local: [undef]
     155Thu Oct 13 15:59:15 2011 UDPv4 link remote: 152.54.3.33:1194
     156Thu Oct 13 15:59:15 2011 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
     157Thu Oct 13 15:59:15 2011 VERIFY OK: depth=1, /C=US/ST=NC/L=Chapel_Hill/O=BEN@RENCI/emailAddress=ben-ops@renci.org
     158Thu Oct 13 15:59:15 2011 VERIFY OK: depth=0, /C=US/ST=NC/L=Chapel_Hill/O=BEN@RENCI/OU=server/CN=server/emailAddress=ben-ops@renci.org
     159Thu Oct 13 15:59:16 2011 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
     160Thu Oct 13 15:59:16 2011 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
     161Thu Oct 13 15:59:16 2011 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
     162Thu Oct 13 15:59:16 2011 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
     163Thu Oct 13 15:59:16 2011 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
     164Thu Oct 13 15:59:16 2011 [server] Peer Connection Initiated with 152.54.3.33:1194
     165Thu Oct 13 15:59:18 2011 TUN/TAP device tun0 opened
     166Thu Oct 13 15:59:18 2011 /sbin/ifconfig tun0 192.168.207.22 pointopoint 192.168.207.21 mtu 1500
     167Thu Oct 13 15:59:18 2011 GID set to adm
     168Thu Oct 13 15:59:18 2011 UID set to nobody
     169Thu Oct 13 15:59:18 2011 Initialization Sequence Completed
     170}}}
    167171
    168 }}}
    169172
    170173