OldThor 0 Posted ... Is the password with which I registered here is the same password used by OpenVPN GUI to connect to your server? After changing my password here, is it changed automatically by the file you provided, used by OpenVPN GUI? If the answer to #1 is no, what is the password used by the file you provided, used by OpenVPN GUI? Is it advised that after changing the password here, to open here the Config Generator and generate a new config file? Quote Share this post Link to post
Staff 10015 Posted ... Hello! After the TLS Authorization, authentication with the VPN servers is performed through double certificates and keys, not with some username and password. If you change your account password, that will not change the mentioned files because they are not generated from that password. The encryption keys for the OpenVPN Data Channel are negotiated at each new connection and every 60 minutes through Diffie Hellmann Exchange (DHE) - complying to Forward Secrecy. https://en.wikipedia.org/wiki/Forward_secrecy Authentication based only on login and password with a static key common to every user is not a setup to be taken into consideration if security is required on a VPN service. Not only it will not allow Perfect Forward Secrecy, but it poses some serious security risks: any man in the middle could decrypt your data simply by downloading the key; additionally, an attacker could impersonate the VPN server. Incredibly, some VPN services adopt this method. Kind regards 3 OldThor, go558a83nk and InactiveUser reacted to this Quote Share this post Link to post