in Palm 4 from 10:15 to 11:00.
* [OHM2013](https://ohm2013.org/site/),
July 31-August 4, 2013, near Alkmaar, The Netherlands.
- There was a lightning talk about tinc ([slides](/presentations/OHM2013/The_tinc_VPN.pdf)) in T2 at 15:55 on August 1, a talk about [ChaosVPN](http://wiki.hamburg.ccc.de/index.php/ChaosVPN) in T6 at 13:00 on August 1,
+ There was a lightning talk about tinc ([slides](/presentations/OHM2013/The_tinc_VPN.pdf)) in T2 at 15:55 on August 1, a talk about [ChaosVPN](https://wiki.hamburg.ccc.de/index.php/ChaosVPN) in T6 at 13:00 on August 1,
and combined workshop for tinc and ChaosVPN at the [Milliways village](https://ohm2013.org/wiki/Village:Milliways).
-* [Chaos Communication Camp](http://events.ccc.de/camp/2011/),
+* [Chaos Communication Camp](https://events.ccc.de/camp/2011/),
August 10-14, 2011, in Finowfurt, Germany.
We were present in the [Milliways village](http://events.ccc.de/camp/2011/wiki/Milliways).
* [FOSDEM](https://archive.fosdem.org/2011/),
[slides](/presentations/linuxexpo-20010123/),
or download the
[presentation](/presentations/linuxexpo/slides.tgz).
-* [NLLGG](http://www.nllgg.nl/) meeting,
+* [NLLGG](https://www.nllgg.nl/) meeting,
October 7th, 2000.
You can look at a copy of the
[sheets](/presentations/nllgg/tp.ps.gz) we used.
If you wish to contact us in private you can do so via the
following addresses. Note that we use
-[GnuPG](http://www.gnupg.org/), our emails are (almost) always
+[GnuPG](https://www.gnupg.org/), our emails are (almost) always
signed. This will also allow you to send us encrypted emails.
- Guus Sliepen <guus@tinc-vpn.org>
### On IRC
-There is a channel on the [FreeNode](http://www.freenode.net/) and
-[OFTC](http://www.oftc.net/) IRC networks. Connect to
+There is a channel on the [FreeNode](https://www.freenode.net/) and
+[OFTC](https://www.oftc.net/) IRC networks. Connect to
[irc.freenode.net](irc://irc.freenode.net/#tinc)
or [irc.oftc.net](irc://irc.oftc.net/#tinc) and join channel `#tinc`.
We are logged in most of the time, but may not be active. If you
This is a list of distributions and unofficial package repositories
that provide packages for tinc:
-- [Arch Linux](http://www.archlinux.org/packages/?q=tinc) ([ARM](http://archlinuxarm.org/packages?arch=&search=tinc))
+- [Arch Linux](https://www.archlinux.org/packages/?q=tinc) ([ARM](https://archlinuxarm.org/packages?arch=&search=tinc))
- [Dag Wieƫrs RPM packages](http://pkgs.repoforge.org/tinc/) for Red Hat and Fedora Core
-- [Debian](http://packages.debian.org/tinc)
+- [Debian](https://packages.debian.org/tinc)
- [Fink](http://pdb.finkproject.org/pdb/package.php/tinc)
-- [FreeBSD](http://www.freebsd.org/cgi/ports.cgi?query=tinc&stype=name&sektion=security)
-- [Gentoo](http://packages.gentoo.org/package/tinc)
+- [FreeBSD](https://www.freebsd.org/cgi/ports.cgi?query=tinc&stype=name&sektion=security)
+- [Gentoo](https://packages.gentoo.org/packages/net-misc/tinc)
- [Homebrew](http://braumeister.org/formula/tinc)
-- [MacPorts](http://www.macports.org/ports.php?by=name&substr=tinc)
-- [NetBSD](http://ftp.netbsd.org/pub/pkgsrc/current/pkgsrc/net/tinc/README.html)
-- [openSUSE](http://software.opensuse.org/search?p=1&q=tinc&include_home=true)
-- [OpenWRT](http://dev.openwrt.org/browser/packages/net/tinc/)
+- [MacPorts](https://www.macports.org/ports.php?by=name&substr=tinc)
+- [NetBSD](https://ftp.netbsd.org/pub/pkgsrc/current/pkgsrc/net/tinc/README.html)
+- [openSUSE](https://software.opensuse.org/search?p=1&q=tinc&include_home=true)
+- [OpenWRT](https://openwrt.org/)
- [Parabola](https://parabolagnulinux.org/packages/?q=tinc)
- [Source Mage](http://download.sourcemage.org/codex/stable/net/tinc/)
- [Ubuntu](http://packages.ubuntu.com/tinc)
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# Creative Commons BY-SA License for more details.
#
- # http://creativecommons.org/licenses/by-sa/
+ # https://creativecommons.org/licenses/by-sa/
------------------------------------------------------------------------
- # information: http://www.tinc-vpn.org/
+ # information: https://www.tinc-vpn.org/
------------------------------------------------------------------------
cat /usr/share/doc/tinc/examples/tinc-up
w3m /usr/share/doc/tinc/tinc_0.html
- http://www.tinc-vpn.org/documentation/tinc_toc
+ https://www.tinc-vpn.org/documentation/tinc_toc
sudo vim /etc/default/tinc
EXTRA="-d"
### Example Layout
[[!img examples/fig-ipv6-network.png link=examples/fig-ipv6-network.dia]]
-*Click on the image for the original [DIA](http://en.wikipedia.org/wiki/Dia_(software)) file.*
+*Click on the image for the original [DIA](https://en.wikipedia.org/wiki/Dia_(software)) file.*
### Scenario Parameters
ip -6 link set $INTERFACE down
</pre>
-5. You can use [radvd](http://www.litech.org/radvd/) or [Quagga](http://www.quagga.net/) to perform [stateless address autoconfiguration](http://www.ietf.org/rfc/rfc2462.txt) on your LAN. This is an example zebra.conf for LAN autoconfiguration (don't forget to enable the zebra daemon):
+5. You can use [radvd](http://www.litech.org/radvd/) or [Quagga](http://www.quagga.net/) to perform [stateless address autoconfiguration](https://www.ietf.org/rfc/rfc2462.txt) on your LAN. This is an example zebra.conf for LAN autoconfiguration (don't forget to enable the zebra daemon):
<pre>
ipv6 forwarding
!
### Start tinc automatically on system boot
-[launchd](http://en.wikipedia.org/wiki/Launchd) is a system for monitoring services and make sure services are started if certain conditions are met. This system is available on OS X 10.5 and later versions.
+[launchd](https://en.wikipedia.org/wiki/Launchd) is a system for monitoring services and make sure services are started if certain conditions are met. This system is available on OS X 10.5 and later versions.
To use launchd, you have to create a property-list file for tinc and put it under /Library/LaunchDaemons/
In the case of compiling tinc the following is required:
-* [XCode](http://developer.apple.com/xcode/)
+* [XCode](https://developer.apple.com/xcode/)
* [LZO libraries](http://www.oberhumer.com/opensource/lzo/)
Before starting, create a new folder `tmp` in your home directory
Having installed Tinc, you can move to the [next section](#config).
-#### Download it
-
-Link: [tincd-1.0.9.zip](/packages/osx/tincd-1.0.9.zip). Please note that this archieve
-provides only the executable and does not include any manual. Once
-downloaded, place the extracted executable into `/usr/sbin/`.
-
### Configuring tinc
Tinc on OS X looks for configuration files in `/usr/etc/tinc`. In
node, as described in the [[bridging example|examples/bridging]]. However,
setting up a bridge is rather complex, and if one only needs unicast IP traffic
to work, and broadcast or non-IP traffic is not a requirement, one can use the
-[proxy ARP](http://en.wikipedia.org/wiki/Proxy_ARP) features of the operating
+[proxy ARP](https://en.wikipedia.org/wiki/Proxy_ARP) features of the operating
system instead.
Since we only use unicast IP traffic, proxy ARP works with both router and
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# Creative Commons BY-SA License for more details.
#
- # http://creativecommons.org/licenses/by-sa/
+ # https://creativecommons.org/licenses/by-sa/
#-----------------------------------------------------------------------
#-----------------------------------------------------------------------
- # http://www.tinc-vpn.org/
- # http://www.tinc-vpn.org/documentation/tinc_toc
+ # https://www.tinc-vpn.org/
+ # https://www.tinc-vpn.org/documentation/tinc_toc
#-----------------------------------------------------------------------
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# Creative Commons BY-SA License for more details.
#
- # http://creativecommons.org/licenses/by-sa/
+ # https://creativecommons.org/licenses/by-sa/
#-----------------------------------------------------------------------
#-----------------------------------------------------------------------
- # http://www.tinc-vpn.org/
- # http://www.tinc-vpn.org/examples/bridging
- # http://www.tinc-vpn.org/documentation/tinc_toc
+ # https://www.tinc-vpn.org/
+ # https://www.tinc-vpn.org/examples/bridging
+ # https://www.tinc-vpn.org/documentation/tinc_toc
#-----------------------------------------------------------------------
[VPN links](/vpnlinks)
## Hosted by:
-[](http://non-gnu.uvt.nl/)
+[](https://non-gnu.uvt.nl/)
and encryption to create a secure private network between hosts on
the Internet.
tinc is Free Software and licensed under the
-[GNU General Public License](http://www.gnu.org/licenses/old-licenses/gpl-2.0.html)
+[GNU General Public License](https://www.gnu.org/licenses/old-licenses/gpl-2.0.html)
version 2 or later.
Because the VPN appears to the IP level network code as a normal
network device, there is no need to adapt any existing software.
[[!meta author="guus"]]
[[!meta date="April 3rd 2004"]]
-The website has moved from [nl.linux.org](http://nl.linux.org/) to
-[non-gnu.uvt.nl](http://www.non-gnu.uvt.nl/). From now on we will use our own
-domain name, [tinc-vpn.org](http://www.tinc-vpn.org/), for our website and our
+The website has moved from http://nl.linux.org/ to
+[non-gnu.uvt.nl](https://www.non-gnu.uvt.nl/). From now on we will use our own
+domain name, [tinc-vpn.org](https://www.tinc-vpn.org/), for our website and our
email addresses.
[[!meta author="guus"]]
[[!meta date="May 14th 2008"]]
-[Debian Security Advisory 1571](http://www.debian.org/security/2008/dsa-1571)
+[Debian Security Advisory 1571](https://www.debian.org/security/2008/dsa-1571)
affects tinc as well. Read more about it [[here|security]].
-The website has been converted to a Wiki, powered by [ikiwiki](http://ikiwiki.info/).
+The website has been converted to a Wiki, powered by [ikiwiki](https://ikiwiki.info/).
You can [browse the repository](/git/tinc/) online. However, to
make real use of it you should have to have the git tools
installed. If you do not have them, you can find them at
-[http://git.or.cz/](http://git.or.cz/).
+[https://git-scm.com/](https://git-scm.com/).
Then run either one of these commands:
git clone git://tinc-vpn.org/tinc
or:
- git clone http://tinc-vpn.org/git/tinc
+ git clone https://tinc-vpn.org/git/tinc
This creates a copy of the public repository of tinc. For every
release of tinc there is a corresponding tag in the git repository,
<center>
-<a href="http://www.google.com/search">
-<img src="http://www.google.com/logos/Logo_40wht.gif" border="0" alt="Google" align="middle"></a>
-<form method="get" action="http://www.google.com/custom">
+<a href="https://www.google.com/search">
+<img src="https://www.google.com/logos/Logo_40wht.gif" border="0" alt="Google" align="middle"></a>
+<form method="get" action="https://www.google.com/custom">
<input type="hidden" name="cof" value="AH:center;AWFID:3b0286bcc086f023;" />
<input type="hidden" name="domains" value="www.tinc-vpn.org" />
<font face="arial,sans-serif" size="-1">
The following list contains advisories for security issues in tinc in old versions:
- [CVE-2013-1428](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1428),
- [DSA-2663](http://www.debian.org/security/2013/dsa-2663),
+ [DSA-2663](https://www.debian.org/security/2013/dsa-2663),
[Sitsec advisory](http://sitsec.net/blog/2013/04/22/stack-based-buffer-overflow-in-the-vpn-software-tinc-for-authenticated-peers):
stack based buffer overflow
For those who run tinc on Debian or Debian-based distributions like
Ubuntu and Knoppix, be advised that the following security issue
affects tinc as well:
-[http://www.debian.org/security/2008/dsa-1571](http://www.debian.org/security/2008/dsa-1571)
+[https://www.debian.org/security/2008/dsa-1571](https://www.debian.org/security/2008/dsa-1571)
In short, if you generated public/private keypairs for tinc between
2006 and May 7th, 2008 on a machine running Debian or a derivative,
they may have been generated without a properly seeded random
<span style="font-size: 150%"><b>Hosted by:</b></span>
-[Tilburg University](http://non-gnu.uvt.nl/)
+[Tilburg University](https://non-gnu.uvt.nl/)
* Update the logo.
Having the current logo in a vector graphics format would be very helpful.
It could also be made a little more stylistic, or perhaps replaced with something else entirely.
-Keeping it simple and related to [There Is No Cabal](http://en.wikipedia.org/wiki/Tinc)
-and [black helicopters](http://en.wikipedia.org/wiki/Black_helicopter) would be preferred.
+Keeping it simple and related to [There Is No Cabal](https://en.wikipedia.org/wiki/Tinc)
+and [black helicopters](https://en.wikipedia.org/wiki/Black_helicopter) would be preferred.
* Update the visual appearence of the wiki.
The current style is very simple.
### VPN standardisation
- [[!wikipedia IPsec]]
-- [Virtual Private Network Consortium](http://www.vpnc.org/)
+- [Virtual Private Network Consortium](https://www.vpnc.org/)
### Other VPN solutions
- [FairVPN](http://minerva.netgroup.uniroma2.it/fairvpn)
- [FreeLAN](http://www.freelan.org/)
- [GVPE](http://software.schmorp.de/pkg/gvpe.html)
-- [l2tpd](http://sourceforge.net/projects/l2tpd)
+- [l2tpd](https://sourceforge.net/projects/l2tpd)
- [Nest](http://www.targeted.org/nest/)
- [OpenS/WAN](https://www.openswan.org/projects/openswan/)
-- [OpenVPN](http://openvpn.net/)
-- [PeerVPN](http://www.peervpn.net/)
+- [OpenVPN](https://openvpn.net/)
+- [PeerVPN](https://peervpn.net/)
- [Poptop](http://poptop.sourceforge.net/)
- [P2PVPN](http://www.p2pvpn.org/)
- [QuickTun](http://wiki.qontrol.nl/QuickTun)
-- [SocialVPN](http://socialvpn.wordpress.com/)
-- [strongSwan](http://www.strongswan.org/)
-- [VPMN](http://code.google.com/p/vpmn/)
+- [SocialVPN](https://socialvpn.wordpress.com/)
+- [strongSwan](https://www.strongswan.org/)
+- [VPMN](https://github.com/prodrigestivill/vpmn)
- [VTun](http://vtun.sourceforge.net/)
- [Yavipin](http://yavipin.sourceforge.net/)
projects / wiki / commitdiff