Bernhard.Linz/openvpn-install
1
0
Fork 0
mirror of https://github.com/angristan/openvpn-install.git synced 2025-03-14 06:33:17 +01:00
Code Issues Projects Releases Wiki Activity

revokeClient: Do not remove revoked client record from index.txt

Browse Source 
Deleting a revoked (^R) client record from index.txt means that the
client will not be listed in the Certificate Revocation List.  This
effectively "unrevokes" the client and allows the client to continue
using the VPN.

Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
This commit is contained in:
Richard T Bonhomme 2021-11-20 15:06:32 +00:00
parent dd9d0aa281
commit 686eee5d34
No known key found for this signature in database
GPG Key ID: 2D767DB92FB6C246
1 changed files with 0 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
openvpn-install.sh
View File

@ -1187,7 +1187,6 @@ function revokeClient() {
rm -f "/root/$CLIENT.ovpn" rm -f "/root/$CLIENT.ovpn"
sed -i "/^$CLIENT,.*/d" /etc/openvpn/ipp.txt sed -i "/^$CLIENT,.*/d" /etc/openvpn/ipp.txt
cp /etc/openvpn/easy-rsa/pki/index.txt{,.bk} cp /etc/openvpn/easy-rsa/pki/index.txt{,.bk}
sed -i -e '/^[R]/d' /etc/openvpn/easy-rsa/pki/index.txt
echo "" echo ""
echo "Certificate for client $CLIENT revoked." echo "Certificate for client $CLIENT revoked."