Hi, On Wed, Sep 11, 2013 at 12:34:42PM +1200, Michael Ludvig wrote: > For example - can OpenVPN hold a session "cookie" and provided it's been > recently used (e.g. within last 5 mins) and perhaps check if the client > IP is still the same use it to re-authenticate without calling to PAM > and OTP and all that? That would significantly improve the user > experience while keeping the connection secured with OTP.
I think it's somewhat a matter of how long it takes to reconnect, and
whether you're using UDP or TCP - OpenVPN already does something with
session cookies (or so) inside, but I can't claim to understand how it
works. Jan Just or James would need to explain this in detail :-)
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany g...@greenie.muc.de
fax: +49-89-35655025 g...@net.informatik.tu-muenchen.de
pgpvh0v1DKvlA.pgp
Description: PGP signature
------------------------------------------------------------------------------ How ServiceNow helps IT people transform IT departments: 1. Consolidate legacy IT systems to a single system of record for IT 2. Standardize and globalize service processes across IT 3. Implement zero-touch automation to replace manual, redundant tasks http://pubads.g.doubleclick.net/gampad/clk?id=51271111&iu=/4140/ostg.clktrk
_______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
