Peter Davis via Openvpn-users <openvpn-users@lists.sourceforge.net> writes:
> By default, OpenVPN is running on the address 0.0.0.0. Is this safe for a web > server? Web servers generally listen on INADDR_ANY. Web server implementations that are unsafe doing so are.... unsafe and should not be used at all. OpenVPN is not a web server. You said "default", but you didn't say what version you are running, how you built it, or if you are using some packaging system, and if so what they are doing. You didn't explain your threat model, what you trying to do, and what you hope to achieve for security properties. (As alawys, follow up on list, not to me directly. It would be rude of me to quote private mail on the list, and I don't want to provide offlist help as that doesn't help the next person.) _______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
