id,summary,reporter,owner,description,type,status,priority,milestone,component,version,severity,resolution,keywords,cc 118,Missing reset of script_security variable in init.d script of Ubuntu package,BigBear,,"Scenario: OpenVPN acting as server and client simultainously, e. g. there is a client.conf and a server.conf file in /etc/openvpn on a Ubuntu 10.04LTS box. client.conf contains no script-security setting. server.conf contains ""script-security 3"" setting for external LDAP authentication script. Problem: When client.conf is processed first, the /etc/init.d/openvpn script set the variable script_security to ""--script-security 2"" in this code block: # Handle backwards compatibility if test -z ""$( grep '^[[:space:]]*script-security[[:space:]]' $CONFIG_DIR/$NAME.conf )"" ; then script_security=""--script-security 2"" fi When server.conf is processed, the variable is still set, although the server.conf contains it's own script-security setting. So clearing the variable is missing here. Proposed solution: This works at least for me although I'm definitively no scripting expert: # Handle backwards compatibility if test -z ""$( grep '^[[:space:]]*script-security[[:space:]]' $CONFIG_DIR/$NAME.conf )"" ; then script_security=""--script-security 2"" else script_security="""" fi ",Bug / Defect,closed,minor,,Packaging,OpenVPN 2.1.4 (Community Ed),"Not set (select this one, unless your'e a OpenVPN developer)",notabug,,