
	Where results make sense

Topic: OpenVPN

Related Topics

Lawn tennis

8086

Pager

Desk Set

Lug

Id Software

Edinboro University of Pennsylvania

SMC

Eythrope

Michael Jackson

Captain Arthur Hastings

Testing effect

AQA

Valamo Monastery

Rapso

	Meet OpenVPN \| Linux Journal
		The OpenVPN process is executed in userland and, thus, is relatively slow.
		The openVPN server is the router/firewall (Shorewall) at the central office.
		OpenVPN 2.0, which is in beta does not require a separate port for each connection such as the 1.x branch did.
	www.linuxjournal.com /article/7949 (3170 words)

	OpenVPN 2.0 HOWTO
		OpenVPN is a full-featured SSL VPN which implements OSI layer 2 or 3 secure network extension using the industry standard SSL/TLS protocol, supports flexible client authentication methods based on certificates, smart cards, and/or username/password credentials, and allows user or group-specific access control policies using firewall rules applied to the VPN virtual interface.
		OpenVPN 2.0 expands on the capabilities of OpenVPN 1.x by offering a scalable client/server mode, allowing multiple clients to connect to a single OpenVPN server process over a single TCP or UDP port.
		OpenVPN can pass the username/password to a plugin via virtual memory, rather than via a file or the environment, which is better for local security on the server machine.
	www.openvpn.net /howto.html (13018 words)

	OpenVPN - An Open Source SSL VPN Solution by James Yonan
		OpenVPN is a full-featured SSL VPN solution which can accomodate a wide range of configurations, including remote access, site-to-site VPNs, WiFi security, and enterprise-scale remote access solutions with load balancing, failover, and fine-grained access-controls (articles) (examples) (security overview) (non-english languages).
		Because OpenVPN is written as a user-space daemon rather than a kernel module or a complex modification to the IP layer, porting efforts are dramatically simplified.
		OpenVPN is entirely a community-supported effort under the GPL, and your donation can go a long way towards ensuring OpenVPN's continuing development, including staying on top of security issues, maintaining a rigorous testing program, adding new features, improving documentation, and providing technical support.
	www.openvpn.net (1454 words)

	OpenVPN Download
		If you are installing OpenVPN from an RPM package, don't forget to install an LZO package as well (see below for LZO packages).
		Binary RPM packages for this version are usually available within a few days after the release date from Dag Wieers RPM site (or build one yourself).
		OpenVPN GUI is now packaged in the Windows installer.
	openvpn.net /download.html (301 words)

	OpenVPN Termination on OpenWrt
		OpenVPN was chosen, due to the availability of packages for OpenWrt and numerous other platforms, the security it provides, and the flexibilty and ease of configuration.
		As the subnet behind the WRT is houwels.sgnet.wafreenet, and it is connecting to the SGNet router, I prefix all OpenVPN configuration files with the name of the subnet, namely houwels.
		The slow-down caused by the VPN tunnel is acceptable in the situation I'm using the WRT.
	martybugs.net /wireless/openwrt/openvpn.cgi (1113 words)

	OpenVPN 2.0 HOWTO
		OpenVPN is a full-featured SSL VPN which implements OSI layer 2 or 3 secure network extension using the industry standard SSL/TLS protocol, supports flexible client authentication methods based on certificates, smart cards, and/or username/password credentials, and allows user or group-specific access control policies using firewall rules applied to the VPN virtual interface.
		OpenVPN 2.0 expands on the capabilities of OpenVPN 1.x by offering a scalable client/server mode, allowing multiple clients to connect to a single OpenVPN server process over a single TCP or UDP port.
		OpenVPN can pass the username/password to a plugin via virtual memory, rather than via a file or the environment, which is better for local security on the server machine.
	openvpn.sourceforge.net /howto.html (13018 words)

	OpenVPN - Wikipedia, the free encyclopedia
		OpenVPN uses the OpenSSL library to provide encryption of both the data and control channels.
		OpenVPN's use of common network protocols (TCP and UDP) makes it a desirable alternative to IPsec in situations where an ISP may block specific VPN protocols in order to force users to subscribe to a higher-priced, "business grade," service tier.
		OpenVPN has the ability to drop root privileges, use mlockall to prevent swapping sensitive data to disk, and enter a chroot jail after initialization.
	en.wikipedia.org /wiki/OpenVPN (580 words)

	Casting Your Net with OpenVPN \| Linux Magazine
		OpenVPN requires a kernel with tuntap support, so in practice, that means either a 2.4 or 2.6 kernel with the tuntap module.
		OpenVPN certificate validation is bi-directional, meaning each side verifies the the validity and issuer of their counterpart’s certificate.
		OpenVPN verifies the client certificate of each new connection against the CRL, which means Mallory won’t be able to connect to the Fancy Sprockets VPN any more.
	www.linux-mag.com /id/2502 (3731 words)

	OpenBSD Installation
		OpenVPN is very simple but also very flexible in a variety of implementations. This document makes some specific choices in deployment and does not provide any additional configuration examples. I’ve tried to make choices that would most likely work in many situations but may not be the most effective for every organization.
		If OpenVPN is also using TCP, then it’s also requesting retransmits of lost packets. This results in unnecessary extra packets crossing the VPN and if the connection is bad enough, a melt down of the tunnel. Requests to retransmit a packet pile up on top of other retransmit requests for the same packet.
		The chroot directive allows you to lock the OpenVPN daemon into a so-called chroot jail, where the daemon would not be able to access any part of the host system's filesystem except for the specific directory given as a parameter to the directive.
	www50.brinkster.com /dachee/OpenVPN.htm (3187 words)

	freshmeat.net: Project details for OpenVPN
		OpenVPN is a robust and highly configurable VPN (Virtual Private Network) daemon which can be used to securely link two or more private networks using an encrypted tunnel over the Internet.
		OpenVPN's principal strengths include wide cross-platform portability, excellent stability, support for dynamic IP addresses and NAT, adaptive link compression, single TCP/UDP port usage, a modular design that offloads most crypto tasks to the OpenSSL library, and relatively easy installation that in most cases doesn't require a special kernel module.
		I've been using OpenVPN for years now, and it's proven to be a solid and reliable solution, not only for use with Linux, but also with Windows as well.
	freshmeat.net /projects/openvpn (420 words)

	erdelynet.com » Blog Archive » OpenVPN
		There are two aspects of OpenVPN that you should open your eyes to: it’s very cross-platform and it uses commonly used (and unblocked) Internet protocols (tcp or udp).
		Also at the time, OpenVPN (1.x) did not support multiple connections to the same server.
		With the different Graphical Interfaces, deploying clients for OS X and Windows is almost as easy.
	erdelynet.com /2006/01/26/openbsd/openvpn (408 words)

	OpenVPN: IPSec-like security with IPSec-less simplicity
		OpenVPN's key advantages lie in its simplified security architecture, modular network design and cross-platform compatibility.
		OpenVPN is scalable; it permits creation of numerous endpoints through scripted interactions that work with push/pull options.
		OpenVPN's ultra portable framework means it can operate on numerous operating systems, including Windows.
	searchopensource.techtarget.com /tip/1,289483,sid39_gci1196447,00.html (758 words)

	CLUG - Open VPN (Site not responding. Last check: 2007-10-26)
		OpenVPN is a Virtual Private Network server, that allows you to join trusted networks together over an untrusted one (the Internet).
		OpenVPN is installed on both the client machine and the server.
		Now you can just bring up openvpn at both ends (order doesn't matter, because the client will retry every 5 seconds), and watch the verbose output for the TLS authentication, followed by the allocation of a network device (usually tun0) and routing.
	clug.net.nz /index.php/OpenVPN?version=11 (1602 words)

	FedoraNEWS.ORG
		Of the many encryption schemes offered by OpenVPN, we will use the one based on preshared static keys; while the method based on RSA certificates has a slight advantage on the crypto side, static keys are much more simple to deploy and are not measurably weaker under normal circumstances.
		One current limitation of OpenVPN is that it needs one UDP port on the server for each client that's registered with the server; there's also one openvpn daemon for each registered client.
		Future versions of OpenVPN will remove this limitation, for the moment you have to deal with it (the limit is actually pretty high, so most users don't have to worry about that).
	fedoranews.org /contributors/florin_andrei/openvpn (1668 words)

	Linux.com :: How to bridge networks with OpenVPN
		OpenVPN is an easy-to-use open source VPN software based on SSL (Secure Sockets Layer) that offers cross-platform interoperability.
		OpenVPN will drop its privileges to user nobody and group nogroup and will chroot to the directory /etc/openvpn/chroot as soon as it initializes, for better security.
		The company's owner is more than happy with OpenVPN's performance and security, but he's happier because he could upgrade their IT infrastructure to meet their needs without spending a fortune on proprietary VPN systems.
	www.linux.com /articles/58336 (1611 words)

	macosxhints.com - Mount a Linux home dir on a Mac via OpenVPN
		Never really thought of this as a hint as most people who are running a Linux server at home have some idea of what they are trying to do.
		Made only minimal mods to the example server.conf file provided with openVPN (pointed it to the CA cert/key files).
		I tried to run Tunnelblick using a server.conf file, but I'm not sure it is intended to run as a server.
	www.macosxhints.com /article.php?story=20060803032236476 (1273 words)

	FreshPorts -- security/openvpn
		OpenVPN is a robust, scalable and highly configurable VPN (Virtual Private Network) daemon which can be used to securely link two or more private networks using an encrypted tunnel over the internet.
		Fix a bug I introduced with last commit which resulted in openvpn not being started during boot.
		* Add support for running multiple instances of openvpn to the startup script Inspired by [1] * Bump PORTREVISION * Update the comment which says not to send notices about 2.0.8 to 2.0.9 since 2.0.9 also introduces only Windows changes.
	www.freshports.org /security/openvpn (1031 words)

	OpenVPN Tunnels and Bridges
		OpenVPN is a robust and highly configurable VPN (Virtual Private Network) daemon which can be used to securely link two or more private networks using an encrypted tunnel over the internet.
		We used OpenVPN to bridge those two laptops with the local LAN shown in the lower left hand corner.
		OpenVPN bridging allowed them to be assigned an additional IP address from the 192.168.1.0/24 network and to be securely bridged to the LAN on the lower left.
	www.shorewall.net /OPENVPN.html (1565 words)

	How to Configure OpenVPN > OpenVPN Installation
		OpenVPN may seem a little daunting at first, but once you get your feet wet this can be an incredibly useful (and free!) tool.
		OpenVPN can be a little daunting to configure the first time you jump into it, but once you get your configuration worked out, it’s a pleasure to use.
		One of the most popular and practical uses for OpenVPN is its ability to enable secure surfing and home network access—whether you're out traveling or you're on an open wifi access point.
	www.informit.com /articles/article.asp?p=605499&rl=1 (516 words)

	gmane.network.openvpn.announce
		Individual patches are available here: http://openvpn.net/patch/2.0.4-security-patches Change Log: * Security fix -- Affects non-Windows OpenVPN clients of version 2.0 or higher which connect to a malicious or compromised server.
		This release fixes a number of bugs in OpenVPN 2.0, including several bugs in the server which might be used to mount a DoS attack.
		OpenVPN 2.0.9 and 2.1-beta16 released (1 Oct 15:02)
	blog.gmane.org /gmane.network.openvpn.announce (1573 words)

	Debian Grimoire: OpenVPN (Site not responding. Last check: 2007-10-26)
		OpenVPN can be used in two device modes: tun_ or tap.
		What makes OpenVPN v2 much better than v 1.x is that it can have multiple clients for a single server - version 1 requires a separate port per client, if i recall correctly).
		OpenVPN v2 has a number of scripts to make it easy to set up the certificates used.
	deb.riseup.net /networking/openvpn (879 words)

	OpenVPN: Building and Integrating Virtual Private Networks
		While being a full-featured VPN solution, OpenVPN is easy to use and does not suffer from the complexity that characterizes other IPSec VPN implementations.
		In Chapter 5, an encryption key for OpenVPN is created and it is then used to setup up our first OpenVPN Tunnel between two windows systems in the same network.
		Chapter 10 covers advanced OpenVPN configurations, including Tunneling through a proxy server, pushing routing commands to clients, pushing and setting the default route through a tunnel, Distributed compilation through VPN tunnels with distcc, and OpenVPN scripting.
	www.packtpub.com /openvpn/book (860 words)

	OpenVPN 2.0 on OpenBSD
		Okay this was stolen from the OpenVPN website but it explains what OpenVPN is. I use it mainly because it is easy to set up (if you compare it with IPSec) and as it is SSL/UPD based it has no problems with NAT.
		OpenVPN works by using a virtual interface (a tun interface for Routing mode and a tap interface for Ethernet Bridging mode) while the encripted traffic passes the physical interface.
		This will tell OpenVPN to act as an DHCP server for the 192.168.0.210-192.168.0.220 range on the local 192.168.0.0/24 network for the VPN clients and to use 192.168.0.1 as their default gateway (together with the `push "redirect-gateway local def1"` entry).
	blog.innerewut.de /articles/2005/07/04/openvpn-2-0-on-openbsd (2015 words)

	OpenVPN - What The Wiki?! (Site not responding. Last check: 2007-10-26)
		OpenVPN implements OSI layer 2 or 3 secure network extension using the industry standard SSL/TLS protocol, supports flexible client authentication methods based on certificates, smart cards, and/or 2-factor authentication, and allows user or group-specific access control policies using firewall rules applied to the VPN virtual interface.
		OpenVPN is not a web application proxy and does not operate through a web browser.
		Please send feedback concerning the key-generation script and the openvpn service to wth-vpn at baraddur.de.
	wiki.whatthehack.org /WTW/index.php/OpenVPN (177 words)

	FileForum \| OpenVPN GUI
		OpenVPN GUI is a graphical front-end application for OpenVPN on Windows.
		OpenVPN is an easy-to-use, robust, and highly configurable SSL VPN (Virtual Private Network) daemon which can be used to securely link two or more private networks using an encrypted tunnel over the Internet.
		I used to use the consolebased "gui", but this wrapper is much easier for my sister to use to vpn to our homenetwork.
	fileforum.betanews.com /detail/OpenVPN_GUI/1107813613/1 (106 words)

	ISS X-Force Database: openvpn-ldpreload-code-execution(25667): OpenVPN setenv LD_PRELOAD code execution
		OpenVPN versions 2.0 through 2.0.5 could allow a remote attacker to execute arbitrary code on OpenVPN client systems.
		If the attacker is in control of a malicious OpenVPN server and a client initiates a connection to the server, the attacker could set the LD_PRELOAD environment variable on the client system using the "setenv" configuration directive.
		CVE-2006-1629: OpenVPN 2.0 through 2.0.5 allows remote malicious servers to execute arbitrary code on the client by using setenv with the LD_PRELOAD environment variable.
	xforce.iss.net /xforce/xfdb/25667 (343 words)

	DynDNS -- DynDNS NOTIFY -- OpenVPN (Site not responding. Last check: 2007-10-26)
		OpenVPN allows for the tunneling of both ethernet and IP network datagrams, allowing a wide range of flexibility for the VPN administrator.
		OpenVPN's SSL-based design allows us to operate OpenVPN on traditional TCP/UDP ports, allowing VPN access from even the most restricted WLAN Hotspots.
		OpenVPN offers secure clients for all of these platforms, with easy to use GUI front-ends, for our not-so-network-savvy users.
	www.dyndns.com /about/company/notify/archives/openvpn.html (335 words)

Try your search on: Qwika (all wikis)