|
|
Hello all, I'm trying to compile an understanding of ssl and it's use in OpenVPN... When using: ./openvpn --genkey --secret ta.key and ta.key is copied to both the server, client and the config files modified to use it as: tls-auth /usr/local/openvpn-2.0/ta.key 0 [1 for client] How is this used by OpenVPN? Does it use this HMAC value to protect the ClientHello and ServerHello handshakes until cipher suite, compression method and protocol version are agreed upon? Is the HMAC value in the ta.key also used for the entire connection session to protect the data channel after the handshake? Thanks for your help and patience... Rhea Heuermann ______________________ OpenVPN mailing lists https://lists.sourceforge.net/lists/listinfo/openvpn-users |