The Following User Says Thank You to deadmalc For This Useful Post: | ||
|
2009-12-10
, 14:14
|
Posts: 219 |
Thanked: 94 times |
Joined on Nov 2009
@ Helsinki, Finland
|
#2
|
|
2009-12-10
, 14:18
|
|
Posts: 415 |
Thanked: 182 times |
Joined on Nov 2007
@ Leeds UK
|
#3
|
The Following User Says Thank You to deadmalc For This Useful Post: | ||
|
2009-12-16
, 06:17
|
Posts: 46 |
Thanked: 5 times |
Joined on Sep 2009
|
#4
|
I need to be able to ssh to my server, and being paranoid I can only do that through a vpn tunnel (openvpn).
|
2009-12-16
, 06:55
|
Posts: 543 |
Thanked: 181 times |
Joined on Aug 2009
@ Universe,LocalCluster.MilkyWay.Sol.Earth.Europe.Slovenia.Ljubljana
|
#5
|
|
2009-12-16
, 16:08
|
Posts: 1,208 |
Thanked: 1,028 times |
Joined on Oct 2007
|
#6
|
|
2009-12-16
, 20:43
|
Posts: 44 |
Thanked: 5 times |
Joined on Oct 2009
@ Sweden
|
#7
|
|
2009-12-16
, 21:05
|
Posts: 1,208 |
Thanked: 1,028 times |
Joined on Oct 2007
|
#8
|
|
2009-12-16
, 21:40
|
Posts: 32 |
Thanked: 9 times |
Joined on Nov 2009
@ Norway
|
#9
|
I can't make this app work(openVPN). I've installed it thorugh the application manager, and now what?
The Following User Says Thank You to adrianp For This Useful Post: | ||
|
2009-12-16
, 21:43
|
Posts: 3,428 |
Thanked: 2,856 times |
Joined on Jul 2008
|
#10
|
If you are *truly* paranoid, how do you see OpenVPN (x509 PKI) being a secure means for creating a tunnel?
SSH (RSA) on a non-standard port with a firewall ACL makes more sense.
I need to be able to ssh to my server, and being paranoid I can only do that through a vpn tunnel (openvpn).
I installed it from extras-devel and found it to be painless, just copied my config from my laptop across installed it into /etc/openvpn and to my surprise it worked first time, and I haven't had any battery drain or stability problems (any way I can help push this into extras?)
But then I thought as seen as it was so easy to setup, no stability issues and no noticeable drain on the battery, I'd keep it on and change my email to use the local address and not use tls for encryption.
Email application is now virtually instant response, so I'd recommend anyone to try this method if they can.
I'm not sure whether it's the tls in modest being crappy, or whether using openvpn with compression is making the difference - and pumping my username/password on the internet in plain text to see which one it is, isn't my idea of fun.
Life on the edge....always waiting to fall