|
|
On Fri, 07 May 2004, John Freeman wrote: > If anyone manages to gain access to a laptop that is connected to the > VPN, then yes I would say it would be a security risk to the VPN. > blocking out all incoming traffic from outside the VPN increases > security no. if you would increase security in that way, you would have to _always_ block _all_ traffic except vpn-traffic. Lets imagine: You surf the web, someone attacks you, gains access, installs trojan. Does it matter whether he does it while having a vpn connection or while surfing the web? No. In both ways your Laptop is compromised, attacker has all the certs, gets your password from a keylogger and your VPN has a security risk. The solution is to secure the laptop as it is. During all the time it is connected to any network. That means stopping all unnecessary services when your don't need them, patching as quick as possible and so on. Your solution would be a sham. As it increases only the "feeled security" - not the real one. ____________________________________________ Openvpn-users mailing list Openvpn-users@xxxxxxxxxxxxxxxxxxxxx https://lists.sourceforge.net/lists/listinfo/openvpn-users Warning: require_once(../../../archive_common.php) [function.require-once]: failed to open stream: No such file or directory in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2004-05/msg00061.html on line 196 Fatal error: require_once() [function.require]: Failed opening required '../../../archive_common.php' (include_path='/usr/local/lib/php') in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2004-05/msg00061.html on line 196 |