[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Google
 
Web openvpn.net

[Openvpn-users] client password


  • Subject: [Openvpn-users] client password
  • From: jamal ayach <jamal.ayach@xxxxxxxx>
  • Date: Fri, 31 Aug 2007 07:31:11 -0400

While debugging PAM authentication, I noticed that clear text password 
is shown in openvpn.log on server's side. Password also visible from 
client side. Is this a "noraml" behaviour ? (when verbose is set to 11)

Server:

local 142.135.16.22
port 1194
proto udp
dev tap
mode server
float
client-cert-not-required
username-as-common-name
ca /etc/openvpn/examples/easy-rsa/keys/ca.crt
cert /etc/openvpn/examples/easy-rsa/keys/server.crt
key /etc/openvpn/examples/easy-rsa/keys/server.key
dh /etc/openvpn/examples/easy-rsa/keys/dh1024.pem
ifconfig-pool-persist /etc/openvpn/ipp.txt
server-bridge 142.135.16.22 255.255.255.0 142.135.16.240 142.135.16.249
keepalive 20 120
tls-server
duplicate-cn
cipher AES-128-CBC
comp-lzo
max-clients 10
user nobody
group nogroup
persist-key
persist-tun
status /etc/openvpn/openvpn-status.log 300
log-append  /etc/openvpn/openvpn.log
verb 11
mute 5
plugin /usr/lib/openvpn/openvpn-auth-pam.so openvpn

========================

Client:

client
dev tap
proto udp
remote dads-lab1.test.cmc.ec.gc.ca 1194
resolv-retry 30
user nobody
group nogroup
nobind
tls-client______________________
OpenVPN mailing lists
https://lists.sourceforge.net/lists/listinfo/openvpn-users