blob: 2c2b7b0bcf7c040beb91f18047d8dc353b8f983e (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
|
**
** beta_0.9 requirements
**
**
** Release 1.0 requirements
**
* Write admin program (Magnus) (will be introduced during beta_0.9?)
- Add / Delete / Modify users
- Add / Delete / Modify certificates (by loading the certfile)
- Add / Remove user->certlink
- Add / Delete blacklisted users/cert/IP addr
- Show lastlog
- Show blacklist
- Admin program should use eurephiaDB
**
** Release 1.1 requirements
**
* Write PostgreSQL driver (David S.)
* Logging to syslog
* enhanced firewall thread (fork)
- Write a binary which is executed via execve(...) after fork
(this should release memory kept by openvpn in the forked process)
- This binary loads the firewall interface (dlopen)
- The binary takes care of opening up and destruction of message
queues and semaphores
* Admin program - add vpnpasswd program
- Uses PAM to authenticate local shell user
- Changes password in the eurephia user database for the current
shell user
**
** Wish list
**
* A lot of QA utilities (release 1.1?)
- Writing test program for DB drivers
- which tests only the driver (loads .so file)
- which tests the API, simulating openvpn calls
- Check that user gets blocked and blacklisted on too many failing attempts
- Check that right connection profiles are used
- Check that user/cert matches
* Write MySQL driver (release 1.2?)
* Implement Kerberos user authentication (release 1.3?)
- User/password authentication is done via Kerberos, using
userID(?) from Kerberos ... to replace openvpn_users
|