Recent comments on posts in the blog:

Re: comment 3

Is there a possibility to getting it work with tap interface? The current openvpn binary doesn't work with Android Lollipop :(

I'm using it on Lollipop and I was able to set it up with a graphical app, not a command-line one.

Comment by francois
comment 3
Is there a possibility to getting it work with tap interface? The current openvpn binary doesn't work with Android Lollipop :(
Comment by przemas
etckeeper as audit helper

turn off daily auto-commits turn off auto-commits before package installs

I'd actually not do that. etckeeper's daily autocommit feature once helped me tracing an intruder in a system that got hijacked by a botnet. Although this shouldn't happen in the first place, it was quite helpful that etckeeper kept a hint on when some important files were changed.

Comment by Natureshadow
OpenVPN for Android vs. OpenVPN Connect, Profile File

I've used your OpenVPN posts as a starting point for my own openvpn experiments.

Is there a reason why you chose the Android App OpenVPN for Android over OpenVPN Connect?

I couldn't find much on the differences in the documentation/FAQ of those projects. I've ended up using 'OpenVPN Connect' since it is claimed that it is the 'official' OpenVPN app - and because it is installed/rated by more users.

Do you know some advantages of one over the other?

Regarding the settings on the Android device - I generally dislike the idea of having to navigate complex configuration dialogs in an android app. Fortunately 'OpenVPN Connect' supports importing the settings, keys and certificate from a single .ovpn profile file ('OpenVPN for Android' supports this, too, it seems). With that you can even include the certificates and keys inline.

Your example settings translated to .ovpn syntax should look like:

dev tun
proto udp
remote 1194
resolv-retry infinite
remote-cert-tls server
cipher AES-256-CBC
auth SHA384

key-direction 1
-----BEGIN OpenVPN Static key V1-----
-----END OpenVPN Static key V1-----

I've tested it with 'OpenVPN Connect' on Android 5 and it works as expected.

Comment by Georg Sauthoff

I should also mention that IPv6 dual-stack works well over OpenVPN for Android on 5.0 and above (it's broken on 4.4).

(Side-note: IPv6 dual-stack also works well with the strongSwan IKEv2 app.)

Comment by Jeremy
Interesting approach

You might note that Planet Debian allows you to collapse authors? That was my solution to really not wanting to read particular individuals.

Your approach seems good too though :)

Comment by Steve Kemp
comment 1
I've used yahoo pipes to filter unwanted "noise" from feeds via regex with great success. Very easy to craft stuff like this on the fly.
Comment by Jim
My alternative

Hi, the way you do seems interesting. Till some time ago I was used to use akregator, but now I've change to rss2email [0]. What I do is running through cron the program rss2email which fetchs the feeds and sends them to my email inbox. There I order, sort and in case blacklist the feeds using the mailbox filters.

The advantage is that I can access them from wherever I am (through IMAP as well as webmail access), the filtering are really powerful and easy to set, it's in sync on every computer that I use.


Comment by risca