Certificate Handshake - Plaintext

This forum is for admins who are looking to build or expand their OpenVPN setup.
Forum rules
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
Post Reply
iPhrankie
OpenVPN User
Posts: 10
Joined: Mon Jun 30, 2014 11:04 pm

Certificate Handshake - Plaintext

Post by iPhrankie » Thu Nov 09, 2017 7:55 pm

...............
Last edited by iPhrankie on Fri Nov 10, 2017 2:52 am, edited 1 time in total.

User avatar
TinCanTech
OpenVPN Protagonist
Posts: 3346
Joined: Fri Jun 03, 2016 1:17 pm

Re: Certificate Handshake - Plaintext

Post by TinCanTech » Thu Nov 09, 2017 8:35 pm

iPhrankie wrote:
Thu Nov 09, 2017 7:55 pm
if I need stop putting the person's name in the client certificate
You should probably have a better way to identify your clients than by their real names.

iPhrankie
OpenVPN User
Posts: 10
Joined: Mon Jun 30, 2014 11:04 pm

Re: Certificate Handshake - Plaintext

Post by iPhrankie » Thu Nov 09, 2017 9:17 pm

TinCanTech wrote:
Thu Nov 09, 2017 8:35 pm
iPhrankie wrote:
Thu Nov 09, 2017 7:55 pm
if I need stop putting the person's name in the client certificate
You should probably have a better way to identify your clients than by their real names.
I understand and there is a strict accounting for clients.

However, I still need to understand my original question above.

User avatar
TinCanTech
OpenVPN Protagonist
Posts: 3346
Joined: Fri Jun 03, 2016 1:17 pm

Re: Certificate Handshake - Plaintext

Post by TinCanTech » Thu Nov 09, 2017 10:12 pm

iPhrankie wrote:
Thu Nov 09, 2017 9:17 pm
TinCanTech wrote:
Thu Nov 09, 2017 8:35 pm
iPhrankie wrote:
Thu Nov 09, 2017 7:55 pm
if I need stop putting the person's name in the client certificate
You should probably have a better way to identify your clients than by their real names.
I understand and there is a strict accounting for clients.
Not strict enough ..
iPhrankie wrote:
Thu Nov 09, 2017 9:17 pm
I still need to understand my original question
To understand your question ? .. Or .. To answer your question ?

Yes, certificate information is commonly shared as plain text ..

Post Reply