Storing the username and password in a textfile?

Eymali · Post by **Eymali** » Tue Apr 30, 2019 10:36 pm

Hi!
I currently have a Raspberry Pi on a Rasbian setup to be a VPN Gateway to a Network behind a Firewall. The Pi is acting as the Client, the Firewall is the OpenVPN Server.
I successfully created the tunnel and managed to setup the client. Its working just fine.
What bothers me is, that I store everything in textfiles.
I got a user.crt, a ca.crt, a private.key and also a login file.
So if anyone manages to get into my Pi, wouldn't he just be able to copy all the Certificates and the login?
I assume he would be able to access the VPN tunnel with that information.
Isn't there a possibility to "safely" store those files? To be honest, I have no experience in hashing passwords or similar measures.

TinCanTech · Post by **TinCanTech** » Tue Apr 30, 2019 11:14 pm

The only file which you must take responsibility for protecting is your ca.key

The recommended course of action is to keep that file safely in offline storage.

Eymali · Post by **Eymali** » Wed May 01, 2019 8:11 pm

Could you explain what you are talking about?
Offline storage should be pretty obvious. But it is not at all. This could mean anything

TinCanTech · Post by **TinCanTech** » Wed May 01, 2019 10:07 pm

Eymali wrote: ↑
Wed May 01, 2019 8:11 pm
Could you explain what you are talking about?

TinCanTech wrote: ↑
Tue Apr 30, 2019 11:14 pm
The only file which you must take responsibility for protecting is your ca.key

Eymali wrote: ↑
Wed May 01, 2019 8:11 pm
Offline storage should be pretty obvious. But it is not at all. This could mean anything

It means Offline

If you want me to teach you how to secure your server then you are on the wrong Forum.

OpenVPN Support Forum

Storing the username and password in a textfile?

Storing the username and password in a textfile?

Re: Storing the username and password in a textfile?

Re: Storing the username and password in a textfile?

Re: Storing the username and password in a textfile?