Skip to content

Commit

Permalink
Removed %any from ipsec.secrets
Browse files Browse the repository at this point in the history 
Having %any in ipsec.secrets appears to allow any username to log in with a valid password, which is not intended
  • Loading branch information
@jawj
jawj authored Jun 3, 2018
1 parent 87a5ae2 commit 13a78c7
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion setup.sh
View file
Original file line number Diff line number Diff line change
Expand Up @@ -243,7 +243,7 @@ conn roadwarrior
" > /etc/ipsec.conf

echo "${VPNHOST} : RSA \"privkey.pem\"
${VPNUSERNAME} %any : EAP \""${VPNPASSWORD}"\"
${VPNUSERNAME} : EAP \""${VPNPASSWORD}"\"
" > /etc/ipsec.secrets

ipsec restart
Expand Down

0 comments on commit 13a78c7

Please sign in to comment.