Jump to content
Not connected, Your IP: 3.144.248.24
greenclaydog

Does AirVPN validate its certs properly in the connection process?

Recommended Posts

Is AirVPN vulnerable to a MiTM attack by sysadmins looking to throttle their clients? According to  http://security.stackexchange.com/questions/53444/vpns-vulnerable-to-mitm-because-any-certificate-goes OpenVPN does not validate that the cert is correct, thus making it possible for ISPs, sysadmins etc, to trick the client to use a fake cert so they may monitor the connections contents. Is AirVPN safe from this?

Share this post


Link to post

Is AirVPN vulnerable to a MiTM attack by sysadmins looking to throttle their clients?

 

No.

 

According to  http://security.stackexchange.com/questions/53444/vpns-vulnerable-to-mitm-because-any-certificate-goes OpenVPN does not validate that the cert is correct, thus making it possible for ISPs, sysadmins etc, to trick the client to use a fake cert so they may monitor the connections contents. Is AirVPN safe from this?

 

Safe. Frankly, we don't even know whether VPN services without client-side certificate validation exist. Probably not but if you find them, avoid them at all costs.

 

The only way to break the trust is suggested in the thread you linked and requires a compromised system, just like you would do with HTTPS. Any security consideration and audit must start from a non-compromised system, obviously.

 

Kind regards

Share this post


Link to post

Hello!

 

If Airs site was vulnerable to like so, it would totally ruin Airs Christmas!

 

You can also check the specs, if you haven't .

 

Welcome to AirVPN.


Moderators do not speak on behalf of AirVPN. Only the Official Staff account does. Please also do not run Tor Exit Servers behind AirVPN, thank you.
Did you make a guide or how-to for something? Then contact me to get it listed in my new user guide's Guides Section, so that the community can find it more easily.

Share this post


Link to post

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
  • Security Check
    Play CAPTCHA Audio
    Refresh Image

×
×
  • Create New...