Search icon CANCEL
Arrow left icon
Explore Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Conferences
Free Learning
Arrow right icon
Arrow up icon
GO TO TOP
Troubleshooting OpenVPN

You're reading from   Troubleshooting OpenVPN Get the solutions you need to troubleshoot any issue you may face to keep your OpenVPN up and running

Arrow left icon
Product type Paperback
Published in Mar 2017
Publisher Packt
ISBN-13 9781786461964
Length 178 pages
Edition 1st Edition
Languages
Tools
Concepts
Arrow right icon
Author (1):
Arrow left icon
Eric F Crist Eric F Crist
Author Profile Icon Eric F Crist
Eric F Crist
Arrow right icon
View More author details
Toc

File and process permissions

For OpenVPN to be effective, the user running the OpenVPN process will need to have the necessary privileges and access to the system, networking, and filesystem. This includes access to writing log files, modifying network adapter settings and the system routing tables, and executing scripts or programs.

Privilege de-escalation

As stated earlier, to make many of the network and routing changes, OpenVPN will need some initial privileges in excess of a typical user. Once these changes have been made, there is usually no need to retain these administrative rights. Using the --user and --group configuration parameters, the administrator can instruct OpenVPN that unprivileged user to operate as once the initialization process has completed.

There are caveats to dropping to an unprivileged user, however. First, all files that the OpenVPN process needs to use during normal operation must be readable and/or writable by the unprivileged user. This includes --client...

lock icon The rest of the chapter is locked
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Renews at $19.99/month. Cancel anytime