Openvpn 2.7.1-1 permissions

gabo · April 11, 2026, 2:54pm

Just updated an alma 10 box this morning. One of the updates via epel was for openvpn.

After the update, openvpn fails to start.

The error shows both the log file and log-status file failing to open due to permissions.

Options error: --status fails with ‘openvpn-status.log’: Permission denied (errno=13)

My log files are in /etc/openvpn/client/ which has root:root permissions. I’ve tried changing those files and directories to root:openvpn and also to openvpn:openvpn, but neither of those work.

I’m not sure what else they should be. Any help would be appreciated.

UPDATE: I moved the logs to /var/log/openvpn/ and all is working. Not sure why the change, but logs should probably be in the /var/log/ directory anyway so all good.

redadmin · April 11, 2026, 3:46pm

Hello,

I checked the EPEL changelog, but there do not appear to have been any significant changes there.

I suspect the issue is more likely that the existing configuration wrote logs/status files under /etc/openvpn/client/, and this became apparent once it no longer aligned well with the systemd/SELinux-based behavior expected on EL10 systems.

gabo · April 12, 2026, 1:10pm

Interesting. Thanks for checking that. I always forget to look at selinux!