Can openvpn (client) be setup completely sandboxed/no-root? Anyone have links to a guide for doing so?
I think you missed the point; see the whole thread. Giving non-root openvpn caps to let it change net ifs is not what I want.
-
-
Rather I want it not to change any network setup at all, just use ifs/ips I provide and nat-in-userspace to remote's ips.
-
OK. I see... I'm not sure it's that "flexible"? It would be nice to have it all pure userland/no calls to route/ip.
-
The --client-nat option seems to almost do it, but it's broken and unable to fill in the remote-provided ip.
-
And various other stuff (like pw auth) is gratuitously broken/disabled without --pull.
End of conversation
New conversation -
-
-
are you talking about tun/tap? With what I mentioned you can run the OpenVPN binary without root.
-
OK I'd be very interested in seeing your setup then.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.