Open stagg54 opened 8 years ago
We try to make the firstboot scripts as minimal as possible but you raise a good point, especially for the OpenVPN appliance. We do plan to make it even easier to set timezone (advanced option in confconsole) but you make a good argument for it being set at firstboot (at least for OpenVPN).
At the very least, I suggest it get mentioned prominently somewhere in the documentation. It'll save someone a bunch of headache.
On Thu, Jul 21, 2016 at 4:08 PM, Jeremy Davis notifications@github.com wrote:
We try to make the firstboot scripts as minimal as possible but you raise a good point, especially for the OpenVPN appliance. We do plan to make it even easier to set timezone (advanced option in confconsole) but you make a good argument for it being set at firstboot (at least for OpenVPN).
— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://github.com/turnkeylinux/tracker/issues/672#issuecomment-234399236, or mute the thread https://github.com/notifications/unsubscribe-auth/ATa4V86Ez_d7zpSTkt96PWJx6LsGw_nzks5qX-3RgaJpZM4JR9ZD .
Great thanks.
@qq7 - please take care of this when you update the OpenVPN app (assuming that you're working on that). It'd be great to set it via a firstboot inithook (using some sort of geo-location?!) Although, just adding it to the docs (and probably the readme too) would be a good start! :smile:
Ping on this @JedMeister. Documentation has been added but nothing is noted here. Is this done?
Oops, my bad... The MVP (i.e. documentation) has been done. I think that we should consider adding an inithook still though. The Zoneminder one uses geolocation to autogen a timezone. We could use that and fallback to UTC perhaps?
I've just opened a new issue #1522 that is relevant to this one that contains more detail.
I think it would useful to add selecting the timezone during the initial configuration. This caused me a lot of headaches with OpenVPN. The default is UTC. So when I generated the certs, they got stamped with a UTC timestamp. However when I tried to use the certs, my clients were checking the timestamp against local time. They didn't take into account the different time zones. Maybe that is an error in the cert checking code. The certificates only became valid several hours after I created them. The windows openvpn client error was pretty verbose and told me what the problem was, but the ios openvpn app was not very verbose (and unfortunately that was the one I tried first). It's easy enough to do after the fact, but adding it in would probably be pretty easy and avoid some potential issues.