mirror of
https://github.com/trailofbits/algo.git
synced 2025-09-09 05:23:16 +02:00
05ab1f5feb
* Modified certificate generation to address issues #234 and #228 I have made the following modifications to comply with the IKEv2 client certificate requirements: - Changed client certificate CN to {{ IP_subject_alt_name }}_{{ item }} from {{ item }} - Changed client certificate SAN to {{IP_subject_alt_name }} from {{ item }} - Added clientAuth to client certificate EKU I have made the following changes to address a mismatch in the windows deployment script and file names: - Changed the client certificate (.p12) filename in config/{{ IP_subject_alt_name }} to {{ IP_subject_alt_name}}_{{ item }}.p12 from {{ item }}.p12 to match the ps1 script Testing: I have tested the changes on Windows 10 client, Ubuntu 16.04.1 server (DigitalOcean) - the config described in Issue #234 I apologize for not being able to test on other configurations. I hope that someone else can verify my changes * fixed iOS issues * fixed accidentall user change * simplified changes * Final iteration. I think that's all I can do to minimize the changes |
||
|---|---|---|
| .. | ||
| cloud-azure | ||
| cloud-digitalocean | ||
| cloud-ec2 | ||
| cloud-gce | ||
| common | ||
| dns_adblocking | ||
| local | ||
| logging | ||
| proxy | ||
| security | ||
| ssh_tunneling | ||
| vpn | ||