Hello Fabian, > Why does the "interactive service" need to start OpenVPN?
Yeah, I can't understand that, too. > Why not let the GUI start OpenVPN and let OpenVPN connect to the "interactive > service"? Exactly. If openvpn.exe startet in users context the user can manipulate it in ram arbitrarily. There is absolutly no better protection than let the user start openvpn. Because of this openvpn should NOT startet as a user and the user should not have the right to modify scripts. I think it would be good to rethink the hole script idea. Maybe scripts could be only server pushable. greetings Carsten
