0.4.2: Start pinning openvpn versions & upgrade to openvpn 2.4.3

Security release upgrading openvpn to 2.4.3, which patches bugs found by Guido Vranken (https://guidovranken.wordpress.com/2017/06/21/the-openvpn-post-audit-bug-bonanza/)

CVE-2017-7508 Remotely-triggerable ASSERT() on malformed IPv6 packet
CVE-2017-7520 Pre-authentication remote crash/information disclosure
CVE-2017-7521 Remote-triggerable memory leaks / potential double-free
CVE-2017-7522 Post-authentication remote DoS with --x509-track