Recent comments on posts in the blog:

OpenVPN for Android vs. OpenVPN Connect, Profile File

I've used your OpenVPN posts as a starting point for my own openvpn experiments.

Is there a reason why you chose the Android App OpenVPN for Android over OpenVPN Connect?

I couldn't find much on the differences in the documentation/FAQ of those projects. I've ended up using 'OpenVPN Connect' since it is claimed that it is the 'official' OpenVPN app - and because it is installed/rated by more users.

Do you know some advantages of one over the other?

Regarding the settings on the Android device - I generally dislike the idea of having to navigate complex configuration dialogs in an android app. Fortunately 'OpenVPN Connect' supports importing the settings, keys and certificate from a single .ovpn profile file ('OpenVPN for Android' supports this, too, it seems). With that you can even include the certificates and keys inline.

Your example settings translated to .ovpn syntax should look like:

client
dev tun
proto udp
remote openvpn-gateway.example.org 1194
resolv-retry infinite
nobind
persist-key
persist-tun
remote-cert-tls server
comp-lzo
cipher AES-256-CBC
auth SHA384
<ca>
-----BEGIN CERTIFICATE-----
[..]
-----END CERTIFICATE-----
</ca>
<cert> 
-----BEGIN CERTIFICATE-----
[..]
-----END CERTIFICATE-----
</cert>
<key>
-----BEGIN PRIVATE KEY-----
[..]
-----END PRIVATE KEY-----
</key>

key-direction 1
<tls-auth>
-----BEGIN OpenVPN Static key V1-----
[..]
-----END OpenVPN Static key V1-----
</tls-auth>

I've tested it with 'OpenVPN Connect' on Android 5 and it works as expected.

Comment by Georg Sauthoff
IPv6

I should also mention that IPv6 dual-stack works well over OpenVPN for Android on 5.0 and above (it's broken on 4.4).

(Side-note: IPv6 dual-stack also works well with the strongSwan IKEv2 app.)

Comment by Jeremy
Interesting approach

You might note that Planet Debian allows you to collapse authors? That was my solution to really not wanting to read particular individuals.

Your approach seems good too though :)

Comment by Steve Kemp
comment 1
I've used yahoo pipes to filter unwanted "noise" from feeds via regex with great success. Very easy to craft stuff like this on the fly.
Comment by Jim
My alternative

Hi, the way you do seems interesting. Till some time ago I was used to use akregator, but now I've change to rss2email [0]. What I do is running through cron the program rss2email which fetchs the feeds and sends them to my email inbox. There I order, sort and in case blacklist the feeds using the mailbox filters.

The advantage is that I can access them from wherever I am (through IMAP as well as webmail access), the filtering are really powerful and easy to set, it's in sync on every computer that I use.

[0] http://www.allthingsrss.com/rss2email/

Comment by risca
DMIDECODE arguments

If I remember well the dmidecode package is not installed by default.

You can invoke dmidecode to get the BIOS version only:

$ sudo dmidecode -s bios-version

But using cat as you mentioned does not require admin privileges.

Comment by Fabian Rodriguez
--worktree-attributes
nah dog, if you commit the .gitattributes file first you don't need that option. go look up the definition of worktree as it relates to git
Comment by Anonymous
comment 2

Thank you for this step by step guide. Very helpful.

@Djadala: never worked for me on my T430s

Comment by kai