Remove --enable-password-save option

This options is enabled in virtually all distributions and gives no real security benefit. Acked-by: Gert Doering <gert@greenie.muc.de> Message-Id: <1448808959-10565-1-git-send-email-arne@rfc2549.org> URL: http://article.gmane.org/gmane.network.openvpn.devel/10661 Signed-off-by: Gert Doering <gert@greenie.muc.de>
author: Arne Schwabe 2015-11-29 15:55:59 +0100
committer: Gert Doering 2015-11-29 16:43:54 +0100
commit: 9ffd00e7541d83571b9eec087c6b3545ff68441f (patch)
tree: 58e7c608138cb797dd3db4683e584bd8bbae5848 /src/openvpn/misc.c
parent: a8f8b9267183c3cfc065f344d61effe6c55c3da6 (diff)
download: openvpn-9ffd00e7541d83571b9eec087c6b3545ff68441f.zip
openvpn-9ffd00e7541d83571b9eec087c6b3545ff68441f.tar.gz
1 files changed, 0 insertions, 8 deletions
diff --git a/src/openvpn/misc.c b/src/openvpn/misc.c
index 31815cb..5713d2e 100644
--- a/src/openvpn/misc.c
+++ b/src/openvpn/misc.c
@@ -1110,14 +1110,6 @@ get_user_pass_cr (struct user_pass *up,
 
           if (fgets (password_buf, USER_PASS_LEN, fp) != NULL)
             {
-#ifndef ENABLE_PASSWORD_SAVE
-              /*
-               * Unless ENABLE_PASSWORD_SAVE is defined, don't allow sensitive passwords
-               * to be read from a file.
-               */
-              if (flags & GET_USER_PASS_SENSITIVE)
-                msg (M_FATAL, "Sorry, '%s' password cannot be read from a file", prefix);
-#endif
               chomp (password_buf);
             }
author	Arne Schwabe	2015-11-29 15:55:59 +0100
committer	Gert Doering	2015-11-29 16:43:54 +0100
commit	9ffd00e7541d83571b9eec087c6b3545ff68441f (patch)
tree	58e7c608138cb797dd3db4683e584bd8bbae5848 /src/openvpn/misc.c
parent	a8f8b9267183c3cfc065f344d61effe6c55c3da6 (diff)
download	openvpn-9ffd00e7541d83571b9eec087c6b3545ff68441f.zip openvpn-9ffd00e7541d83571b9eec087c6b3545ff68441f.tar.gz