Changes between Version 7 and Version 8 of PrivilegeSeparation

Timestamp:

03/12/12 13:58:24 (12 years ago)

Author:

Samuli Seppänen

Comment:

--

PrivilegeSeparation

@@ +1 @@
+= Introduction =
+
+This article attempts to gather all relevant information about OpenVPN privilege separation into one place. This includes use-cases, requirements, design and implementation details, etc. Currently this is very much work in progress. Please fill in the blanks and fix any errors.
+
 = OpenVPN use-cases =
 
@@ -68 +72 @@
 ||OpenVPN GUI||Interactive user||||
 ||Interactive service||Privileged user||Act as a proxy between OpenVPN GUI and OpenVPN. Handles privileged operations on behalf of OpenVPN.||
-||OpenVPN||Interactive user||Tunneling. Connect to the interactive service for privileged operations.||
+||OpenVPN||Interactive user||Connect to the interactive service for privileged operations.||
 
 The interactive service is a new component that allows running privileged operations such changing routes by the unprivileged OpenVPN process. It's essentially a proxy the unprivileged OpenVPN/OpenVPN GUI application uses to do privileged operations.
 
 Implementation details:
+
+ * From James Yonan: ''"To be complete, the wrapper must also own the OpenVPN private key -- otherwise the configuration would be copyable by a non-privileged user, something that the enterprise model is determined to prevent.  Protecting the private key can be accomplished by storing the key in the system cert/key store, and accessing the key through a  Cryptographic Provider API such as Crypto API on Windows, PKCS#11 on Linux, or Keychain on Mac."''
+
 
 == COM+ ==