Did move the *.cnf file, is the keys still safe?

Need help configuring your VPN? Just post here and you'll get that help.

Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech

Forum rules
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
Post Reply
Calby
OpenVpn Newbie
Posts: 5
Joined: Wed Jul 19, 2017 3:54 pm

Did move the *.cnf file, is the keys still safe?

Post by Calby » Wed Jul 19, 2017 4:01 pm

Hi,
I'm running OpenVPN at my Windows Server 2016 Standard.
I did receive error's all the time regarding this when I did try to generate keys:
WARNING: can't open config file: /etc/ssl/openssl.cnf

I did try to un-install and re-install OpenVPN server but I did get the same error all the time.

So what I did was that I did move the "C:\Program Files\OpenVPN\easy-rsa\openssl-1.0.0.cnf" file to "C:\etc\ssl\" and I did rename it to openssl.cnf now I don't get any error messages and everything seems to work.

Is this good? or is my VPN connections at risk?

TinCanTech
OpenVPN Protagonist
Posts: 11137
Joined: Fri Jun 03, 2016 1:17 pm

Re: Did move the *.cnf file, is the keys still safe?

Post by TinCanTech » Wed Jul 19, 2017 8:43 pm

There is no security risc associated with your work around (I did the same myself).

But you could upgrade to EasyRSA-3.0.0-rc2 which works correctly.
(That is the only version which will work with windows)

Calby
OpenVpn Newbie
Posts: 5
Joined: Wed Jul 19, 2017 3:54 pm

Re: Did move the *.cnf file, is the keys still safe?

Post by Calby » Thu Jul 20, 2017 5:36 am

TinCanTech wrote:There is no security risc associated with your work around (I did the same myself).

But you could upgrade to EasyRSA-3.0.0-rc2 which works correctly.
(That is the only version which will work with windows)
Ok, thanks!
What's up with that version, the 3.0.0-rc2 it has not been updated since 2014.

Post Reply