Determining webvpn cookie lifetime?

David Woodhouse dwmw2 at infradead.org
Mon Dec 28 11:57:05 PST 2015


On Mon, 2015-12-28 at 11:24 -0800, Daniel Lenski wrote:
> 
> # This doesn't work
> 
> $ echo -n password \
> | openconnect gateway.com -u USER --passwd-on-stdin --cookieonly \
> | openconnect gateway.com --cookie-on-stdin --dump-http-traffic
> 
> # This does work
> 
> $ WEBVPN_COOKIE=$(echo -n password | openconnect gateway.com -u USER
> --passwd-on-stdin --cookieonly) \
> && openconnect gateway.com -C $WEBVPN_COOKIE --dump-http-traffic

Note that the --cookieonly option is deprecated; you should really be
using --authenticate. This is the example from the man page:

eval ‘openconnect --authenticate https://vpnserver.example.com‘;
[ -n $COOKIE ] && echo $COOKIE | sudo openconnect --cookie-on-stdin $HOST --servercert $FINGERPRINT

-- 
dwmw2

-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 5691 bytes
Desc: not available
URL: <http://lists.infradead.org/pipermail/openconnect-devel/attachments/20151228/05dab44d/attachment.bin>


More information about the openconnect-devel mailing list