Opened 7 years ago
Closed 7 years ago
#790 closed Patch submission (fixed)
man page update to --tls-auth for 2.4
| Reported by: | krzee king | Owned by: | Steffan Karger |
|---|---|---|---|
| Priority: | minor | Milestone: | |
| Component: | Documentation | Version: | OpenVPN 2.4_alpha2 (Community Ed) |
| Severity: | Not set (select this one, unless your'e a OpenVPN developer) | Keywords: | |
| Cc: |
Description (last modified by )
The last line reads as:
"It should be emphasized that this feature is optional and that the key file used with --tls-auth gives a peer nothing more than the power to initiate a TLS handshake. It is not used to encrypt or authenticate any tunnel data."
I think we could change it to say:
"It should be emphasized that this feature is optional and that the key file used with --tls-auth gives a peer nothing more than the power to initiate a TLS handshake. It is not used to encrypt or authenticate any tunnel data. Use --tls-crypt if you want to use the key file as a static key to encrypt the TLS channel instead"
Change History (4)
comment:1 Changed 7 years ago by
| Description: | modified (diff) |
|---|
comment:2 Changed 7 years ago by
| Owner: | set to Steffan Karger |
|---|---|
| Status: | new → accepted |
comment:3 Changed 7 years ago by
Just sent a patch to the list:
https://www.mail-archive.com/openvpn-devel@lists.sourceforge.net/msg13713.html
comment:4 Changed 7 years ago by
| Resolution: | → fixed |
|---|---|
| Status: | accepted → closed |
Patch has been applied: 403dfe1bfdbdf6e5f8abac3401a96852562aec54.
Make that "authenticate and encrypt", and I fully agree. Will you send a patch to the list, or shall I cook one up?