OpenVPN Support Forum

If you see this with a VPN service, could this be considered a bad thing, or any type of security issue?

Reverse DNS authenticity: [Could be forged: hostname 15-44-12-11.host.bb11.net. does not exist]

I also thought with incorrect DNS information someone could hijack the servers and be posing as an imposter?

Also I've noticed with some VPN services when you do an online lookup they are reporting in another part of the world, could something like this ever be a security problem, with an incorrect location being shown? Could someone hijack a server in this situation and be redirecting it?


Thank you...

OpenVPN does not rely on the DNS name of the VPN server, but it relies on the certificate PKI instead. If someone hijacked a DNS entry then your VPN client would simply refuse to connect , unless the hijacker also managed to steal the server private key.

Ok, wasn't sure if any of this could pose a risk, but to me it looks unprofessional having broken dns and servers showing the incorrect location. I figure, if a VPN can't even get these small things right, what makes us think we are safe using this service...