Freek Dijkstra wrote: > Hi, > > I use OpenVPN at home, and at work we're looking for a replacement for a > currently proprietory VPN solution. > > Is there a way that OpenVPN would support RSA SecureID? (RSA SecureID is > a small hardware dongle which provides a one-time password that users > need to use to authenticate). > > I actually have another question, which is off-topic, but if you know a > pointer I appreciated that: Is L2TP considered secure, given that MD5 is > broken? (Most people have moved to IPsec or OpenVPN, but I have not yet > found a server and client that support RSA SecureID for IPsec or > OpenVPN. I have found such solutions for PPTP and L2TP. I know to stay > away from PPTP, but am not sure about L2TP.). > > IPSec+L2TP is still considered secure; whether L2TP only supports MD5 or not is not an issue - encryption is done by the IPSec layer, which supports SHA1/SHA2.
HTH, JJK ------------------------------------------------------------------------------ Get 100% visibility into Java/.NET code with AppDynamics Lite! It's a free troubleshooting tool designed for production. Get down to code-level detail for bottlenecks, with <2% overhead. Download for free and get started troubleshooting in minutes. http://pubads.g.doubleclick.net/gampad/clk?id=48897031&iu=/4140/ostg.clktrk _______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
