You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@cloudstack.apache.org by "Sheng Yang (JIRA)" <ji...@apache.org> on 2014/07/09 22:59:06 UTC

[jira] [Created] (CLOUDSTACK-7087) [VR] [VPN] Downgrade openswan to previous for VPN services

Sheng Yang created CLOUDSTACK-7087:
--------------------------------------

             Summary: [VR] [VPN] Downgrade openswan to previous for VPN services
                 Key: CLOUDSTACK-7087
                 URL: https://issues.apache.org/jira/browse/CLOUDSTACK-7087
             Project: CloudStack
          Issue Type: Bug
      Security Level: Public (Anyone can view this level - this is the default.)
          Components: Virtual Router
    Affects Versions: 4.2.0, 4.3.0
            Reporter: Sheng Yang
            Assignee: Harikrishna Patnala
             Fix For: 4.2.1, 4.3.1


Latest OpenSwan fail to work with OSX/IOS after latest Debian security update(Mar 2014, https://www.debian.org/security/2014/dsa-2893 ).

And why Debian didn’t fix it officially, is because Debian decided to drop the support for OpenSwan(since nobody is maintaining it and it hasn’t been updated for 2 years before this security fix). We would need to move to other VPN software in the future.

Here is the Debian bugzilla for the issue. https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=744717

So far, downgrade openswan is only an intermediate solution. We need to move to other VPN software(e.g. StrongSwan) which is still maintained by Debain in the near future.



--
This message was sent by Atlassian JIRA
(v6.2#6252)