Re: [Openvpn-devel] On saving passwords

2016-12-12 Thread Selva Nair
On Mon, Dec 12, 2016 at 3:09 AM, Samuli Seppänen wrote: > Il 11/12/2016 19:52, Selva Nair ha scritto: > >> >> On Sun, Dec 11, 2016 at 12:00 PM, debbie10t > > wrote: >> >> What happens if a remote user, who has admin access to their own >> computer, connects to

Re: [Openvpn-devel] On saving passwords

2016-12-12 Thread Илья Шипицин
2016-12-12 13:09 GMT+05:00 Samuli Seppänen : > Il 11/12/2016 19:52, Selva Nair ha scritto: > > > > On Sun, Dec 11, 2016 at 12:00 PM, debbie10t > > wrote: > > > > What happens if a remote user, who has admin access to their own > > computer, connects to a work V

Re: [Openvpn-devel] On saving passwords

2016-12-12 Thread Samuli Seppänen
Il 11/12/2016 19:52, Selva Nair ha scritto: > > On Sun, Dec 11, 2016 at 12:00 PM, debbie10t > wrote: > > What happens if a remote user, who has admin access to their own > computer, connects to a work VPN but they decide to change said config ? > > > A user who

Re: [Openvpn-devel] On saving passwords

2016-12-11 Thread Selva Nair
On Sun, Dec 11, 2016 at 9:50 PM, Jonathan K. Bullard wrote: But seeing this thread, I am considering having Tunnelblick block > saving/retrieving of the username or password if --auth-nocache is > specified in the configuration file. That should make it easier for > admins because they wouldn't h

Re: [Openvpn-devel] On saving passwords

2016-12-11 Thread Selva Nair
On Sun, Dec 11, 2016 at 12:00 PM, debbie10t wrote: > What happens if a remote user, who has admin access to their own computer, > connects to a work VPN but they decide to change said config ? > A user who has admin access to their own computer can do anything to it: including saving VPN passwor

Re: [Openvpn-devel] On saving passwords

2016-12-11 Thread Selva Nair
Hi, On Sun, Dec 11, 2016 at 9:06 AM, debbie10t wrote: > I think it is down to individual server admins to make this call .. > If they have a policy which demands that passwords not be saved and > openvpn does not have a robust method to do so, what will they do ? > Agreed, GUI should somehow al

Re: [Openvpn-devel] On saving passwords

2016-12-11 Thread debbie10t
On 09/12/16 17:38, Selva Nair wrote: > Hi, > > A comment on the GUI github page said: > > "For ISO27001 certification, we are not allowed to let users save their VPN > passwords locally. Is there a way to remove or disable the 'save password' > box upon authentication ?" > > Although I suggested

Re: [Openvpn-devel] On saving passwords

2016-12-09 Thread Илья Шипицин
9 дек. 2016 г. 22:40 пользователь "Selva Nair" написал: Hi, A comment on the GUI github page said: "For ISO27001 certification, we are not allowed to let users save their VPN passwords locally. Is there a way to remove or disable the 'save password' box upon authentication ?" Although I sugge

[Openvpn-devel] On saving passwords

2016-12-09 Thread Selva Nair
Hi, A comment on the GUI github page said: "For ISO27001 certification, we are not allowed to let users save their VPN passwords locally. Is there a way to remove or disable the 'save password' box upon authentication ?" Although I suggested to use an up script to delete the saved password, the