Security Frequently Asked Questions
Wondering about OpenVPN Connect security and best practices? Refer to these FAQs.
- 1. Is OpenVPN Connect for Android vulnerable to Heartbleed?
- 2. What can I do for good security on my Android device?
- 3. Is it safe to save passwords?
- 4. Why is the save password switch sometimes unavailable?
- 5. Does OpenVPN Connect support the tls-crypt option?
1. | Is OpenVPN Connect for Android vulnerable to Heartbleed? |
No, OpenVPN Connect for Android uses the OpenSSL library, which is immune to Heartbleed. | |
2. | What can I do for good security on my Android device? |
The safest options to protect your VPN profiles against compromise due to a lost or stolen mobile device are:
| |
3. | Is it safe to save passwords? |
The safest option is to use the Android Keychain as a repository for your private key. You can save the password by checking Save Password when you edit the profile. When you check this, OpenVPN Connect stores your password in the keychain. | |
4. | Why is the save password switch sometimes unavailable? |
The save password switch on the authentication password field is typically turned on, but you can turn it off by adding the following OpenVPN directive to the profile: setenv ALLOW_PASSWORD_SAVE 0 ImportantThe above directive only applies to the authentication password. The private key password, if it exists, can always be saved. | |
5. | Does OpenVPN Connect support the tls-crypt option? |
Yes, OpenVPN Connect 1.2.5 and newer supports the tls-crypt option. |