Question : OpenVPN and Ubuntu 10.04: Question about crl

Hi. I have an Ubuntu 10.04 server, and have installed OpenVPN from the repos. It works fine, but when I created the CRL (using revoke-all username), and add the crl-verify line, I get a permissions error on crl.pem. I have tried making it 777, 755, 700, 740, and tried chowning it to nobody:nogroup, which, I believe, is what Ubuntu drops the openvpn process down to after it starts.
I either need to know what permissions crl.pem should have, or I need another way to disable users. Either solution will work for us.
Thanks!
Oh, and although this is less important, is anyone aware of a good management front end for OpenVPN server?

Answer : OpenVPN and Ubuntu 10.04: Question about crl

there could be also a problem with apparmor.

you can check that with

sudo  /etc/init.d/apparmor stop

and restart openvpn and try