From 8c66c8e684726ead903710501684948af97bfb9a Mon Sep 17 00:00:00 2001 From: Angristan Date: Sun, 25 Jun 2017 19:58:41 +0200 Subject: [PATCH] Fix client revocation A client revocation would make crl.pem unreadable and thus blocking any other client to connect. Fixes https://github.com/Angristan/OpenVPN-install/pull/47, https://github.com/Angristan/OpenVPN-install/issues/25 and https://github.com/Angristan/OpenVPN-install/issues/49. --- openvpn-install.sh | 1 + 1 file changed, 1 insertion(+) diff --git a/openvpn-install.sh b/openvpn-install.sh index a34e84b..2f8f79a 100644 --- a/openvpn-install.sh +++ b/openvpn-install.sh @@ -133,6 +133,7 @@ if [[ -e /etc/openvpn/server.conf ]]; then rm -rf pki/issued/$CLIENT.crt rm -rf /etc/openvpn/crl.pem cp /etc/openvpn/easy-rsa/pki/crl.pem /etc/openvpn/crl.pem + chmod 644 /etc/openvpn/crl.pem echo "" echo "Certificate for client $CLIENT revoked" echo "Exiting..."