[strongSwan] strongswan on Android devices

Tobias Brunner tobias at strongswan.org
Tue Apr 17 13:07:30 CEST 2012


Hi Nitin,

> I am trying to run strongswan on Nexus S running 4.0-3. Is their any way
> to run strongswan in non-su mode? I read that during
> ./configure, --with-user=<user_name> --with-group=<group_name> options
> gives such flexibility on Linux. But how to achieve the same on Linux?
> Any idea?

This is already the case by default in the Android build.  After
starting up as root the daemons will switch to user 'vpn' (which is
predefined on Android) and drop unnecessary capabilities (the same as
when compiled with ./configure --with-capabilities=native on Linux).

Regards,
Tobias




More information about the Users mailing list