* Tue Sep 02 2025 Jean-Philippe Pialasse <jpp@koozali.org> 0.1.6-11.sme

- set lzo compression as disabled [SME: 13123]
- set default hmac sha256 and ciphers AES-256-GCM [SME: 13115]
  remove BF-CBC
- remove /var/service/openvpn-routed [SME: 12379]
- use locatime to log connexions [SME: 13128]

root/sbin/e-smith/systemd/openvpn-routed

@@ -26,9 +26,7 @@ if [[ ! -f /etc/openvpn/routed/pub/cacrl.pem && -f /etc/openvpn/bridge/pub/cacrl
 fi
 
 # to use localtime to log
-/usr/bin/cp -f /etc/localtime /etc/openvpn/routed/etc/
-mkdir -p /etc/openvpn/routed/usr/share
-cp -af /usr/share/zoneinfo /etc/openvpn/routed/usr/share
+/usr/bin/cp -L /etc/localtime /etc/openvpn/routed/etc/
 
 if [ ! -z "$( ls -A '/etc/openvpn/routed/priv/' )" ]; then
     chmod 0600 /etc/openvpn/routed/priv/*

smeserver-openvpn-routed.spec

@@ -4,7 +4,7 @@
 Summary: OpenVPN, a strong VPN solution build over SSL, pre-configured for routed mode
 Name: smeserver-openvpn-routed
 %define version 0.1.6
-%define release 10
+%define release 11
 Version: %{version}
 Release: %{release}%{?dist}
 License: GPL
@@ -26,7 +26,7 @@ to have a full working openvpn server running in routed mode.
 
 
 %changelog
-* Tue Sep 02 2025 Jean-Philippe Pialasse <jpp@koozali.org> 0.1.6-10.sme
+* Tue Sep 02 2025 Jean-Philippe Pialasse <jpp@koozali.org> 0.1.6-11.sme
 - set lzo compression as disabled [SME: 13123]
 - set default hmac sha256 and ciphers AES-256-GCM [SME: 13115]
   remove BF-CBC