>Hi, >On Wed, Nov 01, 2023 at 05:16:52PM +0000, Jason Long via Openvpn-users wrote: > Hello,Is there a tool to measure the security of OpenVPN connection? > Something that tells if the security parameters used in the configuration > file are sufficient or not.
>For TLS and data channel ciphers, the tool is "trust OpenVPN and your TLS >libraries" (and do not forget to *update* your stuff regularily). >Under normal conditions there is nothing you can do in your config file >which will *improve* security. But there is much you can do wrong. >You do want to use tls-auth or tls-crypt, which is the only thing where >"default" is not good enough. >gert >-- >"If was one thing all people took for granted, was conviction that if you >feed honest figures into a computer, honest figures come out. Never doubted >it myself till I met a computer with a sense of humor." > Robert A. Heinlein, The Moon is a Harsh Mistress >Gert Doering - Munich, Germany g...@greenie.muc.de Hello, You said "Under normal conditions there is nothing you can do in your config file which will *improve* security.", what are abnormal conditions? Do you mean to use "tls-crypt" instead of "tls-auth"? _______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users