Recent comments on posts in the blog:
Is there a possibility to getting it work with tap interface? The current openvpn binary doesn't work with Android Lollipop
I'm using it on Lollipop and I was able to set it up with a graphical app, not a command-line one.
turn off daily auto-commits turn off auto-commits before package installs
I'd actually not do that. etckeeper's daily autocommit feature once helped me tracing an intruder in a system that got hijacked by a botnet. Although this shouldn't happen in the first place, it was quite helpful that etckeeper kept a hint on when some important files were changed.
I've used your OpenVPN posts as a starting point for my own openvpn experiments.
I couldn't find much on the differences in the documentation/FAQ of those projects. I've ended up using 'OpenVPN Connect' since it is claimed that it is the 'official' OpenVPN app - and because it is installed/rated by more users.
Do you know some advantages of one over the other?
Regarding the settings on the Android device - I generally dislike the idea of having to navigate complex configuration dialogs in an android app. Fortunately 'OpenVPN Connect' supports importing the settings, keys and certificate from a single
.ovpn profile file ('OpenVPN for Android' supports this, too, it seems). With that you can even include the certificates and keys inline.
Your example settings translated to
.ovpn syntax should look like:
client dev tun proto udp remote openvpn-gateway.example.org 1194 resolv-retry infinite nobind persist-key persist-tun remote-cert-tls server comp-lzo cipher AES-256-CBC auth SHA384 <ca> -----BEGIN CERTIFICATE----- [..] -----END CERTIFICATE----- </ca> <cert> -----BEGIN CERTIFICATE----- [..] -----END CERTIFICATE----- </cert> <key> -----BEGIN PRIVATE KEY----- [..] -----END PRIVATE KEY----- </key> key-direction 1 <tls-auth> -----BEGIN OpenVPN Static key V1----- [..] -----END OpenVPN Static key V1----- </tls-auth>
I've tested it with 'OpenVPN Connect' on Android 5 and it works as expected.
I should also mention that IPv6 dual-stack works well over OpenVPN for Android on 5.0 and above (it's broken on 4.4).
(Side-note: IPv6 dual-stack also works well with the strongSwan IKEv2 app.)
You might note that Planet Debian allows you to collapse authors? That was my solution to really not wanting to read particular individuals.
Your approach seems good too though
Hi, the way you do seems interesting. Till some time ago I was used to use akregator, but now I've change to rss2email . What I do is running through cron the program rss2email which fetchs the feeds and sends them to my email inbox. There I order, sort and in case blacklist the feeds using the mailbox filters.
The advantage is that I can access them from wherever I am (through IMAP as well as webmail access), the filtering are really powerful and easy to set, it's in sync on every computer that I use.