v4.6.0: The end #1829
Replies: 29 comments 25 replies
-
Hi, thank you very much for the honesty. What are some of the alternatives you mentioned? |
Beta Was this translation helpful? Give feedback.
-
Hi @4s3ti thank you very much for your involvement and thank you for the kind words. I have to admit I myself was also busy IRL and don’t have much time to invest in significant changes, however from time to time I check in issues and discussions helping users here and there. Sill, there are important features like nftables and ACLs that I’d like to have, either done by me or (better) someone stepping up and tagging me for review, which is easier to manage. Regarding archiving the repo, I would say we don’t have to. According to GitHub traffic stats there are 1000+ git clones, (which are likely PiVPN installations since the install script does git clone) and 6,7k stars (growing) so I believe it’s still relatively popular. |
Beta Was this translation helpful? Give feedback.
-
Ah, the memories :) good luck with whatever you undertake next @4s3ti! |
Beta Was this translation helpful? Give feedback.
-
Thank you for helping me get into the magical worlds of vpns! Gonna finally make the switch to Opnsense's built in wireguard |
Beta Was this translation helpful? Give feedback.
-
Thank you for your work and good luck @4s3ti ! |
Beta Was this translation helpful? Give feedback.
-
Thank you very much for all @4s3ti! You've really inspired us to make our own VPN solution, based on WireGuard. We couldn't have been more grateful to you! ❤️ |
Beta Was this translation helpful? Give feedback.
-
I started using PiVPN less than a week ago and already in love with PiVPN. So sad to see this project goes away. Thank you for your work @4s3ti |
Beta Was this translation helpful? Give feedback.
-
Nowadays I run my own Ansible scripts to install and manage WireGuard, but me too started with VPNs via PiVPN: worked great and made OpenVPN much less intimidating. PiVPN was also the first project I contributed too. I didn’t even know how to open a pull request back then 😆 #470 |
Beta Was this translation helpful? Give feedback.
-
I will always remember how I fiddled around for so long and nothwing worked, and I came accros pivpn and it worked within seconds, adn there were imaginary tears of joy on my cheek - thank you for the project |
Beta Was this translation helpful? Give feedback.
-
Thanks for the opportunity to contribute to this project. It worked for 2 years during lockdown giving acess to our Church office from home. All the best to the originators. |
Beta Was this translation helpful? Give feedback.
-
Thank you for all your hard work! I've used pivpn for at least 3-4 years now and it has served me very well. I'm sad to see it go, but I appreciate the honesty! Thank you for the ride and good luck in your future endeavors! |
Beta Was this translation helpful? Give feedback.
-
Thanks for the project! PiVPN is what allowed a noob like me to set up their own VPN server all those years ago. Guided installation scripts rule and you made the world a better place! |
Beta Was this translation helpful? Give feedback.
-
Thank you very much for all the time and efforts you put into PiVPN all these years. It is a very popular software option in our little distro, more popular than our plain OpenVPN and WireGuard server implementations: https://dietpi.com/survey/#software
Wouldn't be @orazioedoardo an obvious choice to add as owner for the organisation, if he is open for that? Also keeping issues and PRs open and possible, to allow users helping each others, and in case there are people who want to contribute e.g. smaller fixes for upcoming distro changes and such? It is possible to unsubscribe from any email or web notifications from a repo 😉. I did in the past and would surely offer smaller fixes, when our users bring issues to us. It makes sense to leave some info/note that there is no very active project maintainer, and hence review/merge of commits can take long/are not assured. But as long as there is still a major long-term code contributor around, at least by times, archiving the repo or even closing issues and PRs would be a sad blocker, IMO. |
Beta Was this translation helpful? Give feedback.
-
@4s3ti Please, give your community time to advocate a successor. My vote is for @orazioedoardo That is only a vote not an obligation or demand.
This is a very harsh decision. With trust, a new branch could be established (eg.
my2c |
Beta Was this translation helpful? Give feedback.
-
@4s3ti Thank you for the excellent work. I loved using PIVPN. Is there any reason to stop using PIVPN ? Is it safe to continue using it even if it is not maintained anymore? |
Beta Was this translation helpful? Give feedback.
-
Thank you for your years of dedication and hard work. PiVPN has been instrumental over the years in not only working on my home server when I'm not home, not just for securing my network traffic when traveling, but in keeping my kids' devices locked behind my self-hosted parental controls even when they're at school or elsewhere. I'm just glad that now that my VPN is set up, all I really need to worry about doing is keeping the system packages updated. The end of this project does not mean that our current VPN servers are automatically vulnerable. Honestly, I'll probably just clone the repo as it exists now so that I can use the scripts on future installs. Again, thank you for your hard work and dedication, and I wish you the best of luck in your future endeavors, :-) |
Beta Was this translation helpful? Give feedback.
-
Thank you so much for all of the work all of you have put in over the years. PiVPN was an invaluable tool in my arsenal for many years. All the best to you. <3 |
Beta Was this translation helpful? Give feedback.
-
Thanks so much, i was happy to contribute to this project, even a little. This script served me well and will continue on as one of the best VPN scripts out there in a pinch ❤️ Everyone did a great job 💯 👍🏻 |
Beta Was this translation helpful? Give feedback.
-
I've been using this for years, I'm immensely grateful for your and anyone's work who contributed. Thank you! |
Beta Was this translation helpful? Give feedback.
-
So sorry to see piVPN go.... Thanks to all who have had a hand in keeping it going. Before you go, can you answer a question? At what point should we walk away from using piVPN? Presumably it works OK today, but when / how will we know that it is no longer prudent to rely on it? |
Beta Was this translation helpful? Give feedback.
-
Thanks, that is reassuring. I use piVPN on 4 networks I keep. All on Pi’s, too, I might add. I appreciate your well thought reply, thanks. Sent from my iPhoneOn Apr 8, 2024, at 1:27 PM, MichaIng ***@***.***> wrote:
See above discussion, that it might not stop being further developed/maintained only because the orga owner stops doing so.
Also, IMO, you can perfectly use it as long as it successfully installs and the pivpn commands or OpenVPN/WireGuard services do not throw errors. It works on Debian Trixie (at time of writing), and I do not see significant changes to be applied there (on the OpenVPN/WireGuard packages provided) which would break it. Hence you can further use it on Debian Trixie (release planned for summer 2025 with as always about 3 years regular life time), and on Debian Bookworm anyway.
Note that PiVPN itself has limited influence on the safety of the actual VPN server, as those are provided by Debian (or whichever distro you use) and updated independently via apt upgrade, even offered/suggested to be automated on a daily bases by the PiVPN installer. Within a Debian release, those packages however receive only security and bug fix patches, no actual (upstream version) updates, hence no new features or similar. This also means that the VPN server settings, like TLS version, cipher suites etc, chosen by PiVPN, remain best practice for the Debian release you use. For WireGuard those are not even defined (not sure if it is even possible), but all managed WireGuard-internally. For Unbound and OpenVPN, PiVPN chooses pretty sane hardened settings, and while there are always harder ones, and more will arise in the future, the ones currently chosen by PiVPN do not become weak from one moment to the other. I.e. even if the Unbound/OpenVPN versions shipped with Debian Trixie or future Debian versions support newer/safer cryptography algorithms, this wouldn't render PiVPN unsafe. However, in case it did not receive any commit in 3 years, I would start to watch out for alternatives, popular forks or such 😉.
Ah, of course if AI or quantum computing makes a leap and SHA256 and/or TLS1.2 are officially rendered weak/broken. But media/news would be full of it, and Debian packages would be patched quickly to not support those anymore.
The cipher defined in https://github.com/pivpn/pivpn/blob/master/files/etc/openvpn/server_config.txt#L25C1-L25C7 (CBC) is btw indeed not very secure anymore, but this setting is anyway ignored in OpenVPN server versions from 2.6, hence from Debian Bookworm (and Bullseye backports) on.
—Reply to this email directly, view it on GitHub, or unsubscribe.You are receiving this because you commented.Message ID: ***@***.***>
|
Beta Was this translation helpful? Give feedback.
-
Thank for all the work done, you make OpenVPN closer and easier for much more users! Hope everything goes well. My thanks also to all the contributors of the project |
Beta Was this translation helpful? Give feedback.
-
Thank you so much for your efforts! A few years ago when I was just getting into Linux and Homelabbing, PiVPN's installation scripts are what helped me setup OpenVPN in a simple way! |
Beta Was this translation helpful? Give feedback.
-
Thanks a lot for maintaining PiVPN all this time! |
Beta Was this translation helpful? Give feedback.
-
@4s3ti Could you disable branch protection? I'm about to post an update but can't this way. |
Beta Was this translation helpful? Give feedback.
-
This project was one of my first entries into linux and raspberry pi. Thabk you and everyone project contributor for the work you put into. |
Beta Was this translation helpful? Give feedback.
-
Thank you for your time and effort!! PiVPN has been a huge help to me in many ways 🙏 |
Beta Was this translation helpful? Give feedback.
-
@4s3ti , thanks for maintaining pivpn for so long. i can understand your move. but one question:
which are the tools out there which can provide easy commandline based openvpn/wireguard setup & administration like pivpn ? |
Beta Was this translation helpful? Give feedback.
-
Hi everyone,
It's time to say goodbye.
This is the final official release of PiVPN.
I inherited this project from @0-kaladin and @redfast00, who moved on with their lives. I maintained it as my own with the great help of @orazioedoardo, to whom I'm immensely grateful. He held the boat and kept it floating while I could not be present, and he too gave a lot of himself to this project!
But now it's time for me too to move on!
I've been giving less and less attention to PiVPN, and the desire to keep up with it is no longer what it once was. When PiVPN was created, it filled a big void and had a clear mission and purpose, which I feel has been fulfilled! We went from OpenVPN being something hard to set up and complicated to manage, to WireGuard being able to run on any toaster and easy to set up. There are so many tools out there that do the job much better than PiVPN does, and I genuinely believe PiVPN's mission in life was accomplished and is no longer relevant. Just as everything in nature has a start, there's also an end, and this is how PiVPN ends its journey.
PiVPN has been home for so many of you, starting with Linux, bash, open-source, and everyone was always very welcomed, just like it was for me 7 years ago. I cannot express how grateful I am to all the 84 Contributors for this amazing project.
It has been a wild ride, and I've learned so much from PiVPN and from every single one of you!
THANK YOU!!
PiVPN repositories will be archived and set to read-only, and will no longer be maintained. Unless @0-kaladin rises back again and decides otherwise.
The PiVPN Website and its documentation are hosted on GitHub, therefore it will remain accessible under the pivpn.io domain for as long as @0-kaladin keeps paying the bills, just the same way I will keep hosting the redirection for the installation for as long as possible. I will still make a few commits to update the documentation about the project's state, but that will be it.
I will maintain ownership of the repository, but I won't pass it down to anyone else. First, because I feel it's not up to me to decide who to pass the project down to, and second, because there is no one else to pass the project to.
"But I want and can maintain it, can I take it over?" Let me put it plain and simple: No! I don't know you, I don't trust you! Fork it and carry on!
About this release, here's what it brings:
New Features
Bugfixes and Refactors
Full Changelog: v4.5.0...v4.6.0
Once again, Thank you all so much for everything! See you around!
4s3ti
This discussion was created from the release v4.6.0: The end.
Beta Was this translation helpful? Give feedback.
All reactions